EPSS
Percentile
5.1%
com.vaadin, flow-server is vulnerable to remote code execution. An attacker is able to inject malicious code into the frontend resources during application rebuilds.
github.com/vaadin/flow/pull/10640
vaadin.com/security/cve-2021-31411