๐ Vaadin up to 14.4.2/17.x com.vaadin:flow-server path traversal
๐ก Newskategorie: Sicherheitslรผcken
๐ Quelle: vuldb.com
A vulnerability, which was classified as critical, has been found in Vaadin up to 14.4.2/17.x. Affected by this issue is an unknown code of the component com.vaadin:flow-server. Upgrading to version 18.0 eliminates this vulnerability. Applying a patch is able to eliminate this problem. The bugfix is ready for download at github.com. The best possible mitigation is suggested to be upgrading to the latest version. ...