vaadin-compatibility-server is vulnerable to regular expression denial of service. The vulnerability exists due to unsafe validation RegEx in EmailValidator
, which will cause uncontrolled resource consumption when an attacker submits a malicious email address.