2 matches found
CVE-2022-29567
The CVE-2022-29567 vulnerability concerns the default configuration of the TreeGrid component in Vaadin. Affected installations are those using Vaadin versions 14.8.5–14.8.9, 22.0.6–22.0.14, 23.0.0.beta2–23.0.8, and 23.1.0.alpha1–23.1.0.alpha4. The issue arises because Object::toString is used as...
CVE-2022-29567 Possible information disclosure inside TreeGrid component with default data provider
The default configuration of a TreeGrid component uses Object::toString as a key on the client-side and server communication in Vaadin 14.8.5 through 14.8.9, 22.0.6 through 22.0.14, 23.0.0.beta2 through 23.0.8 and 23.1.0.alpha1 through 23.1.0.alpha4, resulting in potential information disclosure ...