CVE-2021-31410

Overly relaxed configuration of frontend resources server in Vaadin Designer versions 4.3.0 through 4.6.3 allows remote attackers to access project sources via crafted HTTP request.
References
Link Resource
https://vaadin.com/security/cve-2021-31410 Vendor Advisory
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:vaadin:designer:*:*:*:*:*:*:*:*

Information

Published : 2021-04-23 10:15

Updated : 2021-05-04 08:25


NVD link : CVE-2021-31410

Mitre link : CVE-2021-31410


JSON object : View

CWE
CWE-668

Exposure of Resource to Wrong Sphere

Advertisement

dedicated server usa

Products Affected

vaadin

  • designer