CVE-2020-36319
maven/com.vaadin/flow-server
Information Exposure
Insecure configuration of default ObjectMapper in com.vaadin:flow-server
may expose sensitive data if the application also uses e.g. @RestController
All versions starting from 3.0.0 through 3.0.5
Upgrade to version 3.0.6 or higher.
2021-05-07
source |