Количество 2
Количество 2
CVE-2023-25499
When adding non-visible components to the UI in server side, content is sent to the browser in Vaadin 10.0.0 through 10.0.22, 11.0.0 through 14.10.0, 15.0.0 through 22.0.28, 23.0.0 through 23.3.12, 24.0.0 through 24.0.5 and 24.1.0.alpha1 to 24.1.0.beta1, resulting in potential information disclosure.
GHSA-5f9v-mv5g-jh5q
Vaadin vulnerable to possible information disclosure in non visible components.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-25499 When adding non-visible components to the UI in server side, content is sent to the browser in Vaadin 10.0.0 through 10.0.22, 11.0.0 through 14.10.0, 15.0.0 through 22.0.28, 23.0.0 through 23.3.12, 24.0.0 through 24.0.5 and 24.1.0.alpha1 to 24.1.0.beta1, resulting in potential information disclosure. | CVSS3: 5.7 | 0% Низкий | больше 2 лет назад |
| GHSA-5f9v-mv5g-jh5q Vaadin vulnerable to possible information disclosure in non visible components. | CVSS3: 5.7 | 0% Низкий | больше 2 лет назад |
Уязвимостей на страницу