Unsafe validation RegEx in EmailField component in com.vaadin:vaadin-text-field-flow versions 2.0.4 up to and including 2.3.2 (Vaadin 14.0.6 up to and including 14.4.3), and 3.0.0 up to and including 4.0.2 (Vaadin 15.0.0 up to and including 17.0.10) allows malicious users to cause uncontrolled resource consumption by submitting malicious email addresses.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
vaadin flow |
||
vaadin vaadin |