CVE-2021-33609
maven/com.vaadin/vaadin-server
Uncontrolled Resource Consumption
Missing check in DataCommunicator
class in com.vaadin:vaadin-server allows authenticated network attacker to cause heap exhaustion by requesting too many rows of data.
All versions starting from 8.0.0 before 8.14.1
Upgrade to version 8.14.1 or above.
2021-10-20
source |