Com.vaadin:vaadin
This hub aggregates every CVE we track for Com.vaadin:vaadin, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
4
CVEs tracked
0
Critical
0
High
0
In CISA KEV
Severity distribution
MEDIUM3LOW1
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
1
0
0
0
2024-072026-06
Latest CVEs
The 4 most recently published vulnerabilities affecting Com.vaadin:vaadin.
- CVE-2026-2742Unauthorized session creation via reserved framework path access5.3
- CVE-2023-25500Possible information disclosure in Vaadin 10.0.0 to 10.0.23, 11.0.0 to 14.10.1, 15.0.0 to 22.0.28, 23.0.0 to 23.3.13, 24.0.0 to 24.0.6, 24.1.0.alpha1 to 24.1.0.rc2, resulting in potential informati...3.5
- CVE-2023-25499Possible information disclosure in non visible components5.7
- CVE-2022-29567Possible information disclosure inside TreeGrid component with default data provider5.7
Product normalization is registry-driven with AI assist and human review. How it works