Lucene search
K

5 matches found

github
github
added 2022/05/25 10:40 p.m.42 views

Possible information disclosure inside TreeGrid component with default data provider

Description The default configuration of a TreeGrid component uses Object::toString as a key on the client-side and server communication in Vaadin 14.8.5 through 14.8.9, 22.0.6 through 22.0.14, 23.0.0.beta2 through 23.0.8 and 23.1.0.alpha1 through 23.1.0.alpha4, resulting in potential information...

7.5CVSS6.9AI score0.00915EPSS
Exploits0References5Affected Software2
prion
prion
added 2022/05/24 3:15 p.m.18 views

Default configuration

The default configuration of a TreeGrid component uses Object::toString as a key on the client-side and server communication in Vaadin 14.8.5 through 14.8.9, 22.0.6 through 22.0.14, 23.0.0.beta2 through 23.0.8 and 23.1.0.alpha1 through 23.1.0.alpha4, resulting in potential information disclosure ...

5CVSS7.3AI score0.00915EPSS
Exploits0References2Affected Software1
osv
osv
added 2022/05/24 2:20 p.m.27 views

CVE-2022-29567 Possible information disclosure inside TreeGrid component with default data provider

The default configuration of a TreeGrid component uses Object::toString as a key on the client-side and server communication in Vaadin 14.8.5 through 14.8.9, 22.0.6 through 22.0.14, 23.0.0.beta2 through 23.0.8 and 23.1.0.alpha1 through 23.1.0.alpha4, resulting in potential information disclosure ...

5.7CVSS7AI score0.00915EPSS
Exploits0References4
cvelist
cvelist
added 2022/05/24 2:20 p.m.33 views

CVE-2022-29567 Possible information disclosure inside TreeGrid component with default data provider

The default configuration of a TreeGrid component uses Object::toString as a key on the client-side and server communication in Vaadin 14.8.5 through 14.8.9, 22.0.6 through 22.0.14, 23.0.0.beta2 through 23.0.8 and 23.1.0.alpha1 through 23.1.0.alpha4, resulting in potential information disclosure ...

5.7CVSS7.5AI score0.00915EPSS
Exploits0References2
vaadin
vaadin
added 2022/05/24 12:0 a.m.51 views

Possible information disclosure inside TreeGrid component with default data provider

The default configuration of a TreeGrid component uses Object::toString as a key on the client-side and server communication in Vaadin 14.8.5 through 14.8.9, 22.0.6 through 22.0.14, 23.0.0.beta2 through 23.0.8 and 23.1.0.alpha1 through 23.1.0.alpha4, resulting in potential information disclosure ...

7.5CVSS3.3AI score0.00915EPSS
Exploits0References1Affected Software2
Rows per page
Query Builder