CVE security advisories and vulnerability history for flow by Vaadin.
14
Total CVEs
Published
0
In CISA KEV
Exploited in the wild
0
Public exploits
With known exploit
4.9
Avg CVSS
2021–2026
Last updated
Overview
Vaadin flow has 14 published CVE records since 2021, of which 0 are in CISA's Known Exploited Vulnerabilities catalog and 0 have a known public exploit. The average CVSS base score across scored CVEs is 4.9.
This page aggregates every publicly disclosed vulnerability (CVE) affecting Vaadin flow, with a severity breakdown, the affected and patched versions, the most common weakness types, and the full CVE list.
Severity and exploitation
How the CVSS severity of Vaadin flow's CVEs breaks down, plus how many are exploited in the wild or have public exploit code.
Critical0
High2
Medium8
Low4
In CISA’s Known Exploited Vulnerabilities catalog
0
None of Vaadin flow's CVEs are currently listed in CISA's KEV catalog.
Public exploits
0
No Vaadin flow CVEs currently have a tracked public exploit.
Affected versions and CVEs
Browse every Vaadin flow version named in a CVE, then pick one to see only the CVEs that affect it.
Common questions about Vaadin flow vulnerabilities.
How many CVEs does Vaadin flow have?
Vaadin flow has 14 published CVE records since 2021.
How many Vaadin flow CVEs are in CISA KEV?
None of Vaadin flow's CVEs are currently listed in CISA's Known Exploited Vulnerabilities catalog.
Are there public exploits for Vaadin flow vulnerabilities?
No Vaadin flow CVEs currently have a tracked public exploit in this dataset.
Which versions of Vaadin flow are affected?
415 distinct Vaadin flow versions are named across its CVEs. Use the version filter above to see the CVEs affecting a specific version.
What are the most common weakness types in Vaadin flow CVEs?
Vaadin flow's CVEs most often map to these CWE weakness types: CWE-22 (Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')), CWE-208 (Observable Timing Discrepancy), CWE-209 (Generation of Error Message Containing Sensitive Information), CWE-284 (Improper Access Control).
What is the average severity of Vaadin flow CVEs?
The average CVSS base score across Vaadin flow's scored CVEs is 4.9.
