GMS-2021-64: Potential sensitive data exposure in applications using Vaadin 15
(updated )
Insecure configuration of default ObjectMapper
in com.vaadin:flow-server
versions 3.0.0 through 3.0.5 (Vaadin 15.0.0 through 15.0.4) may expose sensitive data if the application also uses e.g. @RestController
References
Detect and mitigate GMS-2021-64 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →