Unsafe validation RegEx in EmailValidator class in com.vaadin:vaadin-server versions 7.0.0 through 7.7.21 (Vaadin 7.0.0 through 7.7.21) allows attackers to cause uncontrolled resource consumption by submitting malicious email addresses.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| com.vaadin:vaadin-bom(Maven) | 7.0.0.beta1 | 7.7.22 | N/A |
| com.vaadin:vaadin-server(Maven) | 7.0.0.beta1 | 7.7.22 | N/A |
CVSS Metrics
