CVE-2021-31410
Project sources exposure in Vaadin Designer
Overly relaxed configuration of frontend resources server in Vaadin Designer versions 4.3.0 through 4.6.3 allows remote attackers to access project sources via crafted HTTP request.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N
Produtos afetados
Vaadin · DesignerQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
https://vaadin.com/security/cve-2021-31410