Lucene search
K

4 matches found

Prion
Prion
added 2021/04/23 4:15 p.m.21 views

Design/Logic Flaw

Unsafe validation RegEx in EmailField component in com.vaadin:vaadin-text-field-flow versions 2.0.4 through 2.3.2 Vaadin 14.0.6 through 14.4.3, and 3.0.0 through 4.0.2 Vaadin 15.0.0 through 17.0.10 allows attackers to cause uncontrolled resource consumption by submitting malicious email addresses...

5CVSS7.3AI score0.01127EPSS
Exploits0References2Affected Software2
CVE
CVE
added 2021/04/23 4:5 p.m.96 views

CVE-2021-31405

The CVE pertains to Vaadin text-field-flow’s EmailField regex validation, which allows a ReDoS-style resource exhaustion by submitting malicious email addresses. Affected are vaadin-text-field-flow versions 2.0.4–2.3.2 (Vaadin 14.0.6–14.4.3) and 3.0.0–4.0.2 (Vaadin 15.0.0–17.0.10). The root cause...

7.5CVSS7.3AI score0.01127EPSS
Exploits0References2Affected Software2
CNNVD
CNNVD
added 2021/04/23 12:0 a.m.5 views

Vaadin flow 资源管理错误漏洞

Vaadin flow is an application. vaadin platform Java framework for building modern websites that look good, perform well and delight you and your users. vaadin: vaadin-text-field-flow versions 2.0.4 through 2.3.2 are vulnerable to resource management errors, which can be exploited by attackers to ...

7.5CVSS5.5AI score0.01127EPSS
Exploits0References3
Veracode
Veracode
added 2021/04/20 5:30 a.m.25 views

Regular Expression Denial Of Service (ReDoS)

vaadin-text-field-flow is vulnerable to regular expression denial of service. Unsafe validation RegEx in EmailField allows an attacker to cause excessive CPU usage which could lead to a denial of service condition...

7.5CVSS5AI score0.01127EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder