Server classes and resources exposure in OSGi applications using Vaadin 12-14 and 19

🗓️ 19 Apr 2021 14:49:46Reported by GitHub Advisory DatabaseType

Server classes and resources exposure vulnerability in Vaadin OSGi integratio

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 10
Vaadin	Server classes and resources exposure in OSGi applications using Vaadin 12-14 and 19	29 Mar 202100:00	–	vaadin
OSV	GHSA-25XC-JWFQ-39JW OSGi applications using Vaadin 12-14 and 19 vulnerable to server classes and resources exposure	19 Apr 202114:50	–	osv
OSV	GHSA-J9WR-49VQ-RM5G Server classes and resources exposure in OSGi applications using Vaadin 12-14 and 19	19 Apr 202114:46	–	osv
OSV	CVE-2021-31407	23 Apr 202116:15	–	osv
Github Security Blog	OSGi applications using Vaadin 12-14 and 19 vulnerable to server classes and resources exposure	19 Apr 202114:50	–	github
CVE	CVE-2021-31407	23 Apr 202116:15	–	cve
Cvelist	CVE-2021-31407 Server classes and resources exposure in OSGi applications using Vaadin 12-14 and 19	23 Apr 202116:05	–	cvelist
Prion	Design/Logic Flaw	23 Apr 202116:15	–	prion
Veracode	Information Disclosure	20 Apr 202108:08	–	veracode
NVD	CVE-2021-31407	23 Apr 202116:15	–	nvd

Vulners

Node

com.vaadin vaadin-bom

com.vaadin vaadin-bomRange12.0.0–14.4.10

Source	Link
github	www.github.com/vaadin/platform/security/advisories/GHSA-j9wr-49vq-rm5g
vaadin	www.vaadin.com/security/cve-2021-31407
github	www.github.com/advisories/GHSA-j9wr-49vq-rm5g

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

19 Apr 2021 14:46Current

4.2Medium risk

Vulners AI Score4.2

CVSS25

CVSS37.5 - 8.6

EPSS0.01802

CWE-402