Overly relaxed configuration of frontend resources server in Vaadin Designer versions 4.3.0 through 4.6.3 allows remote attackers to access project sources via crafted HTTP request.
References
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: Vaadin

Published: 2021-04-23T16:08:31.003622Z

Updated: 2024-09-17T02:37:25.412Z

Reserved: 2021-04-15T00:00:00

Link: CVE-2021-31410

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-04-23T17:15:08.297

Modified: 2024-11-21T06:05:36.807

Link: CVE-2021-31410

cve-icon Redhat

No data.