Lucene search
K

5 matches found

NVD
NVD
added 2026/05/19 12:16 p.m.16 views

CVE-2026-7860

A possible information disclosure vulnerability exists in the Vaadin Maven plugin and Vaadin Gradle plugin that exposes the full set of environment variables in build logs whenever the frontend build process exits with a non-zero status. Because the build environment may contain credentials...

5.8CVSS0.00117EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/19 11:1 a.m.57 views

CVE-2026-7860 Possible information disclosure of environment variables in Vaadin Build Plugins via Failed Frontend Build

A possible information disclosure vulnerability exists in the Vaadin Maven plugin and Vaadin Gradle plugin that exposes the full set of environment variables in build logs whenever the frontend build process exits with a non-zero status. Because the build environment may contain credentials...

5.8CVSS0.00117EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/19 12:0 a.m.17 views

PT-2026-41882

A possible information disclosure vulnerability exists in the Vaadin Maven plugin and Vaadin Gradle plugin that exposes the full set of environment variables in build logs whenever the frontend build process exits with a non-zero status. Because the build environment may contain credentials...

5.8CVSS5.8AI score0.00117EPSS
Exploits0References3
vulnersOsv
vulnersOsv
added 2026/03/25 6:31 p.m.5 views

at.ganzleicht.vaadin:vaadin-maven-plugin (>=9.1.1 <=9.1.3.2), au.com.acegi:xml-format-maven-plugin (>=4.0.1 <=4.1.0) +2010 more potentially affected by CVE-2025-67030 via org.codehaus.plexus:plexus-utils (>=4.0.0 <=4.0.2)

org.codehaus.plexus:plexus-utils MAVEN version =4.0.0, =9.1.1, =4.0.1, =0.0.1, =0.0.9, =0.4.0, =0.0.0, =1.9.2, =1.0.0-M5, =1.0.0-M6, =1.0.0-M1, =0.0.3, =0.0.3, =0.0.3, =0.0.3, =1.0.0-M10 and more Source cves: CVE-2025-67030 Source advisory: OSV:GHSA-6FMV-XXPF-W3CW...

8.8CVSS5.7AI score0.00663EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2021/03/12 8:24 p.m.6 views

ai.databand.azkaban:azkaban-web-server (=3.18.0), at.ganzleicht.vaadin:vaadin-maven-plugin (>=9.1.1 <=9.1.3.2) +1360 more potentially affected by CVE-2020-13959 via org.apache.velocity:velocity-tools (>=1.3 <=2.0)

org.apache.velocity:velocity-tools MAVEN version =1.3, =9.1.1, =1.0.0, =1.0.0, =0.1, =2.1, =1.2.1, =1.0.0, =0.0.1, =0.0.1, =1.2.28, =1.0.0, =1.1.0 and more Source cves: CVE-2020-13959 Source advisory: OSV:GHSA-FH63-4R66-JC7V...

6.1CVSS6.6AI score0.06357EPSS
Exploits0
Rows per page
Query Builder