CVE-2021-33605
- Source
- https://cve.org/CVERecord?id=CVE-2021-33605
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-33605.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2021-33605
- Aliases
- Published
- 2021-08-25T13:15:07.270Z
- Modified
- 2026-02-07T05:14:30.252827Z
- Severity
-
- 4.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N CVSS Calculator
- Summary
- [none]
- Details
-
Improper check in CheckboxGroup in com.vaadin:vaadin-checkbox-flow versions 1.2.0 prior to 2.0.0 (Vaadin 12.0.0 prior to 14.0.0), 2.0.0 prior to 3.0.0 (Vaadin 14.0.0 prior to 14.5.0), 3.0.0 through 4.0.1 (Vaadin 15.0.0 through 17.0.11), 14.5.0 through 14.6.7 (Vaadin 14.5.0 through 14.6.7), and 18.0.0 through 20.0.5 (Vaadin 18.0.0 through 20.0.5) allows attackers to modify the value of a disabled Checkbox inside enabled CheckboxGroup component via unspecified vectors.
- References
Affected packages
Git
github.com/vaadin/flow-components
Database specific
vanir_signatures
[
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/cee63d6dc44cf68f62dfa479848c564808d028e2",
"id": "CVE-2021-33605-01af0c12",
"target": {
"file": "vaadin-crud-flow-parent/vaadin-crud-flow-integration-tests/src/test/java/com/vaadin/flow/component/crud/test/CustomSearchIT.java"
},
"digest": {
"line_hashes": [
"59681740345875215432738177725571739323",
"31316109232559893038835899238424000512",
"100263397506561847136195768150021840619",
"328285211955223893713502706057488365131"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-1051a495",
"target": {
"file": "vaadin-upload-flow-parent/vaadin-upload-flow/src/main/java/com/vaadin/flow/component/upload/GeneratedVaadinUpload.java"
},
"digest": {
"line_hashes": [
"17814028166688872338785815567584763706",
"71042406788174684557048468232960171191",
"299014712589094631278575435207479256315",
"227069521166539866033074139332624961540"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-1070412c",
"target": {
"file": "vaadin-crud-flow-parent/vaadin-crud-flow/src/main/java/com/vaadin/flow/component/crud/Crud.java"
},
"digest": {
"line_hashes": [
"35984851090290428483229537661166048139",
"53862885723366967049476662667291313922",
"255864546261392068794467956495437854671",
"309437357503747341353455161406920551807"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-1097baea",
"target": {
"file": "vaadin-rich-text-editor-flow-parent/vaadin-rich-text-editor-flow/src/main/java/com/vaadin/flow/component/richtexteditor/GeneratedVaadinRichTextEditor.java"
},
"digest": {
"line_hashes": [
"131006969472617619359629358030793922187",
"277391973191699392687467525845093209847",
"249136991686847555716695039466058713443",
"100675201880421648279908208518032252794"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-131760cb",
"target": {
"file": "vaadin-list-box-flow-parent/vaadin-list-box-flow/src/main/java/com/vaadin/flow/component/listbox/ListBoxBase.java"
},
"digest": {
"line_hashes": [
"300570262923821746465884850248879450679",
"199982207938066808260554964763430244080",
"169539575311165409271986863379606588353",
"160662274005743160862670984686680518725"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-161e4e10",
"target": {
"file": "vaadin-time-picker-flow-parent/vaadin-time-picker-flow/src/main/java/com/vaadin/flow/component/timepicker/GeneratedVaadinTimePicker.java"
},
"digest": {
"line_hashes": [
"148044460571016054489575194374166212907",
"9304591612043003411198039365945277462",
"66226544307092261619067186488658625812",
"284748676900192106719966535111079927394"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-17c0e40d",
"target": {
"file": "vaadin-ordered-layout-flow-parent/vaadin-ordered-layout-flow/src/main/java/com/vaadin/flow/component/orderedlayout/Scroller.java"
},
"digest": {
"line_hashes": [
"160314805801791119216393125975316117197",
"86683920611694738457694827377986087418",
"286198503156613164377578494475695478631",
"185167493012115289521848567325551129803"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-1a97ba1b",
"target": {
"file": "vaadin-checkbox-flow-parent/vaadin-checkbox-flow/src/main/java/com/vaadin/flow/component/checkbox/GeneratedVaadinCheckboxGroup.java"
},
"digest": {
"line_hashes": [
"260803910477330579380607426037834908915",
"313585578239967699242011360977979352633",
"244556622773234884880752738270674871505",
"133618322710986844341489118918041058286"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-1f101f83",
"target": {
"file": "vaadin-custom-field-flow-parent/vaadin-custom-field-flow/src/main/java/com/vaadin/flow/component/customfield/CustomField.java"
},
"digest": {
"line_hashes": [
"188242455364969302998816473077121413453",
"288163065591147530604151829455908231794",
"245164224573246707299089983254479803647",
"19576217394808290888817686406515411456"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-231057d4",
"target": {
"file": "vaadin-button-flow-parent/vaadin-button-flow/src/main/java/com/vaadin/flow/component/button/GeneratedVaadinButton.java"
},
"digest": {
"line_hashes": [
"74440618385793815065781014715030384007",
"156709769517331734613771004573140110706",
"32628886699649921641674303425155135764",
"219838162928966925549730473453212237177"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-2311104b",
"target": {
"file": "vaadin-radio-button-flow-parent/vaadin-radio-button-flow/src/main/java/com/vaadin/flow/component/radiobutton/RadioButton.java"
},
"digest": {
"line_hashes": [
"71465013641877455950347780622298931991",
"292544180894938271206578981939582721800",
"18394410551610921192452410722775260991",
"7475374739330287446207981816691730175"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/cee63d6dc44cf68f62dfa479848c564808d028e2",
"id": "CVE-2021-33605-2bea7940",
"target": {
"file": "vaadin-crud-flow-parent/vaadin-crud-flow-integration-tests/src/test/java/com/vaadin/flow/component/crud/test/CustomSearchIT.java",
"function": "filterSearchBar"
},
"digest": {
"function_hash": "277820763536117922494632826986235569830",
"length": 558.0
},
"signature_type": "Function",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-2d0532ee",
"target": {
"file": "vaadin-grid-pro-flow-parent/vaadin-grid-pro-flow/src/main/java/com/vaadin/flow/component/gridpro/GridPro.java"
},
"digest": {
"line_hashes": [
"245795034316276692514124801230445224864",
"160077026434079973666032208459338994933",
"67158936078269462577132328755908144474",
"316237269643795451110947534834851486543"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-2eaf0cdb",
"target": {
"file": "vaadin-date-picker-flow-parent/vaadin-date-picker-flow/src/main/java/com/vaadin/flow/component/datepicker/GeneratedVaadinDatePicker.java"
},
"digest": {
"line_hashes": [
"22574231571784329580705336896303921398",
"85788343787496748380296709420152136292",
"314606852246561640394074604491196802631",
"61025075463429830182453134842729075557"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-3036097c",
"target": {
"file": "vaadin-avatar-flow-parent/vaadin-avatar-flow/src/main/java/com/vaadin/flow/component/avatar/AvatarGroup.java"
},
"digest": {
"line_hashes": [
"136037457781851141607397853027611825158",
"83042791861180229489934680710056052032",
"146950890412502425811803106919221765311",
"179811366419718466655459790257633384289"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-3b0b237f",
"target": {
"file": "vaadin-radio-button-flow-parent/vaadin-radio-button-flow/src/main/java/com/vaadin/flow/component/radiobutton/RadioButtonGroup.java"
},
"digest": {
"line_hashes": [
"17267943214567600960786988158350631920",
"256213664996509229048650356947342821049",
"31766828511488702916751244186727283991",
"254317046569933408649775877612068721185"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-3ef1ea57",
"target": {
"file": "vaadin-confirm-dialog-flow-parent/vaadin-confirm-dialog-flow/src/main/java/com/vaadin/flow/component/confirmdialog/ConfirmDialog.java"
},
"digest": {
"line_hashes": [
"69013157221056108231928876041479289913",
"95813171730618715124738410045391750137",
"87532315636391356765402842143080962019",
"13954815193121058824787684469551314180"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-41805462",
"target": {
"file": "vaadin-cookie-consent-flow-parent/vaadin-cookie-consent-flow/src/main/java/com/vaadin/flow/component/cookieconsent/CookieConsent.java"
},
"digest": {
"line_hashes": [
"244537561082162884814454299234219339301",
"106528451332594382917520031142622111569",
"128569099169683453904236660460723784759",
"92795942850647084732799482141794262565"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-44026777",
"target": {
"file": "vaadin-icons-flow-parent/vaadin-icons-flow/src/main/java/com/vaadin/flow/component/icon/Icon.java"
},
"digest": {
"line_hashes": [
"108609426558064853853123790209512610797",
"101010212521316521509054661019085038025",
"55607655718871889060044655369069991300",
"143291243275741842964412964281154107531"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-45f89e7d",
"target": {
"file": "vaadin-text-field-flow-parent/vaadin-text-field-flow/src/main/java/com/vaadin/flow/component/textfield/GeneratedVaadinTextField.java"
},
"digest": {
"line_hashes": [
"277703389688138178488184868498571869578",
"137093333539670278142238981794191090259",
"179678705190059924790369712317265716203",
"107019408903488575402942186570149543721"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-50a9086d",
"target": {
"file": "vaadin-crud-flow-parent/vaadin-crud-flow-integration-tests/src/main/java/com/vaadin/flow/component/crud/examples/CustomSearchView.java"
},
"digest": {
"line_hashes": [
"15512546041012576829327089640427839614",
"97823929504565574544664405838309500276",
"179480725928020872279259043876199280972",
"71794842555662581395203446385064403713"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-559e2dd8",
"target": {
"file": "vaadin-messages-flow-parent/vaadin-messages-flow/src/main/java/com/vaadin/flow/component/messages/MessageList.java"
},
"digest": {
"line_hashes": [
"257520139750235480748643650957634039929",
"332171192851957213829168034738023054277",
"88531598248508155908830344590202916965",
"294912607313205626272554486825566808176"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-57e39aee",
"target": {
"file": "vaadin-board-flow-parent/vaadin-board-flow/src/main/java/com/vaadin/flow/component/board/Row.java"
},
"digest": {
"line_hashes": [
"20669709686503661939964267824286878807",
"126887166142231045969732797934930871812",
"114590430554686532936869640970341423862",
"292520366531009624818557212646102378752"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-611020dc",
"target": {
"file": "vaadin-details-flow-parent/vaadin-details-flow/src/main/java/com/vaadin/flow/component/details/Details.java"
},
"digest": {
"line_hashes": [
"104035705988701352602326571065252061901",
"15830909832535838400096028091191913428",
"58249729793739314627078192816988619544",
"337259904748894146468588012477625167111"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-62a0b85f",
"target": {
"file": "vaadin-login-flow-parent/vaadin-login-flow/src/main/java/com/vaadin/flow/component/login/LoginForm.java"
},
"digest": {
"line_hashes": [
"80398794624432985527935488936068976253",
"291279053384370409053239555840739235647",
"53152807338546932362632420905665532622",
"101413932351078178156700519484566951024"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-6e3a6ab6",
"target": {
"file": "vaadin-dialog-flow-parent/vaadin-dialog-flow/src/main/java/com/vaadin/flow/component/dialog/GeneratedVaadinDialog.java"
},
"digest": {
"line_hashes": [
"9370440322005356460677998304439285538",
"22505239133648661633584249815051640674",
"109722367532757899712987364862202765088",
"227232254496490467455708722381730691198"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-6fb49874",
"target": {
"file": "vaadin-avatar-flow-parent/vaadin-avatar-flow/src/main/java/com/vaadin/flow/component/avatar/Avatar.java"
},
"digest": {
"line_hashes": [
"137849122964172831389614421339486844892",
"190199666836860438686766670563986754514",
"244657573326039694146214265504171708096",
"118459383631543941789975844793961916730"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-7a5fbc2d",
"target": {
"file": "vaadin-ordered-layout-flow-parent/vaadin-ordered-layout-flow/src/main/java/com/vaadin/flow/component/orderedlayout/VerticalLayout.java"
},
"digest": {
"line_hashes": [
"6004927546504967842236883781020834312",
"309844381361129965829917019450905088184",
"327932989570489796947377292008939118113",
"216525072256060035155625698917166539906"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-7ab4c358",
"target": {
"file": "vaadin-app-layout-flow-parent/vaadin-app-layout-flow/src/main/java/com/vaadin/flow/component/applayout/DrawerToggle.java"
},
"digest": {
"line_hashes": [
"231092854701472932220072169460914206033",
"142068636406058633249018212557084010265",
"331188224676883323780008515116673762854",
"126388183781794353656880700822375311111"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/cee63d6dc44cf68f62dfa479848c564808d028e2",
"id": "CVE-2021-33605-80693307",
"target": {
"file": "vaadin-crud-flow-parent/vaadin-crud-flow-integration-tests/src/main/java/com/vaadin/flow/component/crud/examples/CustomSearchView.java",
"function": "CustomSearchView"
},
"digest": {
"function_hash": "85085641802805254005443813357765766808",
"length": 1000.0
},
"signature_type": "Function",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-80d985d9",
"target": {
"file": "vaadin-select-flow-parent/vaadin-select-flow/src/main/java/com/vaadin/flow/component/select/generated/GeneratedVaadinSelect.java"
},
"digest": {
"line_hashes": [
"340078978733531426299719095681327400881",
"263498023084618882002597561292671839525",
"176121932838185303046058075522582494265",
"98274816013115347477370717353096219364"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-811f8cc3",
"target": {
"file": "vaadin-list-box-flow-parent/vaadin-list-box-flow/src/main/java/com/vaadin/flow/component/listbox/VaadinItem.java"
},
"digest": {
"line_hashes": [
"42550504400711679514876724960390621878",
"165649584017319119161872209649991166127",
"306305888281015771909794866227954655474",
"104751039460502425091138432205664763436"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-82d3246c",
"target": {
"file": "vaadin-ordered-layout-flow-parent/vaadin-ordered-layout-flow/src/main/java/com/vaadin/flow/component/orderedlayout/HorizontalLayout.java"
},
"digest": {
"line_hashes": [
"93757510322597609802932386977384579422",
"192718828830348739012756153459546290255",
"273227998530842550271226743317834516880",
"95473146192565652794495808524154115592"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-843dc7bf",
"target": {
"file": "vaadin-form-layout-flow-parent/vaadin-form-layout-flow/src/main/java/com/vaadin/flow/component/formlayout/GeneratedVaadinFormItem.java"
},
"digest": {
"line_hashes": [
"282957882644859374679867701039053310113",
"19393776076947133208327629588945342387",
"248066147076413341172218088903655468348",
"305501512119093953243591859378781427236"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-8d450113",
"target": {
"file": "vaadin-lumo-theme-flow-parent/vaadin-lumo-theme-flow/src/main/java/com/vaadin/flow/theme/lumo/Lumo.java"
},
"digest": {
"line_hashes": [
"35163503863064161018416315851520453763",
"172910126264997005807735394104863920835",
"141742659734861041139854224961574534312",
"213724227175201101951967253123756280953"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-8e90d7cb",
"target": {
"file": "vaadin-crud-flow-parent/vaadin-crud-flow-integration-tests/src/test/java/com/vaadin/flow/component/crud/test/CustomSearchIT.java",
"function": "filterSearchBar"
},
"digest": {
"function_hash": "277820763536117922494632826986235569830",
"length": 558.0
},
"signature_type": "Function",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-908c18df",
"target": {
"file": "vaadin-messages-flow-parent/vaadin-messages-flow/src/main/java/com/vaadin/flow/component/messages/MessageInput.java"
},
"digest": {
"line_hashes": [
"107834937114812304884118473791185114882",
"141245357011451210070488293615259076682",
"294981942654550452319102949934220372495",
"61422829143124856226423359786936376280"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-920c4027",
"target": {
"file": "vaadin-context-menu-flow-parent/vaadin-context-menu-flow/src/main/java/com/vaadin/flow/component/contextmenu/GeneratedVaadinContextMenu.java"
},
"digest": {
"line_hashes": [
"103638728270432672574444972437845562509",
"74267904620831679873016822187465513891",
"232631616908423592139805022681496269634",
"64442690487783385643808607420900436603"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-93b7a92d",
"target": {
"file": "vaadin-date-time-picker-flow-parent/vaadin-date-time-picker-flow/src/main/java/com/vaadin/flow/component/datetimepicker/DateTimePicker.java"
},
"digest": {
"line_hashes": [
"104137210041079746077181188554997800499",
"27183242855145401192886963045957731300",
"126407106116016981096902904504259945552",
"204804718752634220514220066831301756082"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-95412572",
"target": {
"file": "vaadin-text-field-flow-parent/vaadin-text-field-flow/src/main/java/com/vaadin/flow/component/textfield/GeneratedVaadinNumberField.java"
},
"digest": {
"line_hashes": [
"63648702329416396398069277646752900962",
"234014029161729210561534704675566255134",
"101431539683804005869795358762694368571",
"279518292166262153048055354642989803238"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-97dfb9d4",
"target": {
"file": "vaadin-grid-flow-parent/vaadin-grid-flow/src/main/java/com/vaadin/flow/component/grid/Grid.java"
},
"digest": {
"line_hashes": [
"222052772681560116180744754504397984691",
"128756131054987752860189391498877319486",
"263811672637578025440732848671140812693",
"315989321538591982227968719665512943887"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-9f21157d",
"target": {
"file": "vaadin-board-flow-parent/vaadin-board-flow/src/main/java/com/vaadin/flow/component/board/Board.java"
},
"digest": {
"line_hashes": [
"250655515334333863002876362452919509189",
"129078269290047542051646963467258586732",
"55098199092400060447761342088101148710",
"272140075437369199581704541159758710038"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/cee63d6dc44cf68f62dfa479848c564808d028e2",
"id": "CVE-2021-33605-a072a2ea",
"target": {
"file": "vaadin-crud-flow-parent/vaadin-crud-flow-integration-tests/src/main/java/com/vaadin/flow/component/crud/examples/CustomSearchView.java"
},
"digest": {
"line_hashes": [
"15512546041012576829327089640427839614",
"97823929504565574544664405838309500276",
"179480725928020872279259043876199280972",
"71794842555662581395203446385064403713"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-a6be7c2e",
"target": {
"file": "vaadin-progress-bar-flow-parent/vaadin-progress-bar-flow/src/main/java/com/vaadin/flow/component/progressbar/ProgressBar.java"
},
"digest": {
"line_hashes": [
"282292731946310703549681924186681097624",
"212776532545024354453284160603183224817",
"272856235244048995746767395567535946306",
"159373133728694293135973811746205472710"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-b26e5a5e",
"target": {
"file": "vaadin-material-theme-flow-parent/vaadin-material-theme-flow/src/main/java/com/vaadin/flow/theme/material/Material.java"
},
"digest": {
"line_hashes": [
"256107984899341401247936896919965508979",
"247033959602995750132299846955343246972",
"47783590820167057461223683844441305713",
"283171644255971906857658458872346674052"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-b3a44d07",
"target": {
"file": "vaadin-crud-flow-parent/vaadin-crud-flow-integration-tests/src/test/java/com/vaadin/flow/component/crud/test/CustomSearchIT.java"
},
"digest": {
"line_hashes": [
"59681740345875215432738177725571739323",
"31316109232559893038835899238424000512",
"100263397506561847136195768150021840619",
"328285211955223893713502706057488365131"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-b66b555c",
"target": {
"file": "vaadin-combo-box-flow-parent/vaadin-combo-box-flow/src/main/java/com/vaadin/flow/component/combobox/GeneratedVaadinComboBox.java"
},
"digest": {
"line_hashes": [
"308423568193975742006181616026036231248",
"169334226808709274666977293224838102841",
"64458889052570178406635779294916719397",
"276629497974922747911353018905579295012"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-b6b06ad8",
"target": {
"file": "vaadin-app-layout-flow-parent/vaadin-app-layout-flow/src/main/java/com/vaadin/flow/component/applayout/AppLayout.java"
},
"digest": {
"line_hashes": [
"121492213739584693243867911492361940896",
"178800637439834218866569396738062841262",
"87479213652147682835729431626994939324",
"330131913068211171518785172582651665971"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-bc13e7e4",
"target": {
"file": "vaadin-tabs-flow-parent/vaadin-tabs-flow/src/main/java/com/vaadin/flow/component/tabs/GeneratedVaadinTab.java"
},
"digest": {
"line_hashes": [
"15467484109674754440942607896689955118",
"310170666341888152560534806360691517678",
"124408477459834393498787170077045239439",
"262703182821273233627514413888238442073"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-c628dfc6",
"target": {
"file": "vaadin-accordion-flow-parent/vaadin-accordion-flow/src/main/java/com/vaadin/flow/component/accordion/Accordion.java"
},
"digest": {
"line_hashes": [
"116425525031373522345235442029408624793",
"166614909775870156463978026318435885359",
"236932918666457428044320094129346614159",
"88125718066803423458039598716446273311"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-c9993144",
"target": {
"file": "vaadin-form-layout-flow-parent/vaadin-form-layout-flow/src/main/java/com/vaadin/flow/component/formlayout/GeneratedVaadinFormLayout.java"
},
"digest": {
"line_hashes": [
"159484505570551470851097949092172217043",
"340197235678163498390162015712856602946",
"158575164054286658619782231691837898640",
"3015433341992937415921429444392474227"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-c9c11bcf",
"target": {
"file": "vaadin-tabs-flow-parent/vaadin-tabs-flow/src/main/java/com/vaadin/flow/component/tabs/GeneratedVaadinTabs.java"
},
"digest": {
"line_hashes": [
"56170546479431854705317058179770751892",
"78556070434823860533174488320474126743",
"239061586520133412623884824318928259817",
"153436135930679323709692989075406664524"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/cee63d6dc44cf68f62dfa479848c564808d028e2",
"id": "CVE-2021-33605-cbedfb53",
"target": {
"file": "vaadin-crud-flow-parent/vaadin-crud-flow/src/main/java/com/vaadin/flow/component/crud/Crud.java"
},
"digest": {
"line_hashes": [
"39968915158975388424381660424564272478",
"83771431171737737576409093911010749143",
"285826722556630841288831541342741640938",
"14409009095683929841298565792095787655"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-d793c9e4",
"target": {
"file": "vaadin-menu-bar-flow-parent/vaadin-menu-bar-flow/src/main/java/com/vaadin/flow/component/menubar/MenuBar.java"
},
"digest": {
"line_hashes": [
"190008530049717038754418305308497447028",
"331063473992853910309356626272661810610",
"230919083027131637183569596419225433500",
"68428780517401075741476134355000546159"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-dda7825d",
"target": {
"file": "vaadin-text-field-flow-parent/vaadin-text-field-flow/src/main/java/com/vaadin/flow/component/textfield/GeneratedVaadinTextArea.java"
},
"digest": {
"line_hashes": [
"19483583361756643913491276094563296818",
"221648049698860562735613869688462998708",
"153836990397061145765624802535972308395",
"188219970216165975687713559031520204435"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-e7a0c389",
"target": {
"file": "vaadin-split-layout-flow-parent/vaadin-split-layout-flow/src/main/java/com/vaadin/flow/component/splitlayout/SplitLayout.java"
},
"digest": {
"line_hashes": [
"336578683964822918417153910022621981966",
"335729976139095035075211828721271225330",
"260266333260000313298589876766972900312",
"55138619773800315713172757780039709722"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-e7bff6c9",
"target": {
"file": "vaadin-checkbox-flow-parent/vaadin-checkbox-flow/src/main/java/com/vaadin/flow/component/checkbox/GeneratedVaadinCheckbox.java"
},
"digest": {
"line_hashes": [
"151937568534439612689037046069366998034",
"167497325361222045574971837610920913176",
"136207781322525568065679668837165161085",
"201157802100924606385763816779522252634"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-e9fd3cbe",
"target": {
"file": "vaadin-text-field-flow-parent/vaadin-text-field-flow/src/main/java/com/vaadin/flow/component/textfield/GeneratedVaadinPasswordField.java"
},
"digest": {
"line_hashes": [
"82646914241776867544476804357478704242",
"208992216729228838500688522358260891529",
"252530762606446524087164387987692272284",
"100023736543419379383837245137852250151"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-ec8757e5",
"target": {
"file": "vaadin-text-field-flow-parent/vaadin-text-field-flow/src/main/java/com/vaadin/flow/component/textfield/GeneratedVaadinEmailField.java"
},
"digest": {
"line_hashes": [
"66234369886701638138412977308506910703",
"204332545857467123850630541209440338574",
"203108117986684780358149252545778570872",
"23875389436870867079911684421910160399"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-f034a615",
"target": {
"file": "vaadin-crud-flow-parent/vaadin-crud-flow-integration-tests/src/main/java/com/vaadin/flow/component/crud/examples/CustomSearchView.java",
"function": "CustomSearchView"
},
"digest": {
"function_hash": "85085641802805254005443813357765766808",
"length": 1000.0
},
"signature_type": "Function",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-fc7c000d",
"target": {
"file": "vaadin-charts-flow-parent/vaadin-charts-flow/src/main/java/com/vaadin/flow/component/charts/Chart.java"
},
"digest": {
"line_hashes": [
"135740232087962277023947295153596579943",
"54455631204135461784061125867406879884",
"161350310800246998165882048493981996709",
"231093428375846449774875199253791912131"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-fcd130f7",
"target": {
"file": "vaadin-login-flow-parent/vaadin-login-flow/src/main/java/com/vaadin/flow/component/login/LoginOverlay.java"
},
"digest": {
"line_hashes": [
"233110650254701891840919566391230267538",
"315953147794962519589302360661767418602",
"6322130757648056110785761958904327593",
"167701783236472238904562493648398022686"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"source": "https://github.com/vaadin/flow-components/commit/b93af352de28567880cf905ca166a16554653abd",
"id": "CVE-2021-33605-fdfe21b7",
"target": {
"file": "vaadin-notification-flow-parent/vaadin-notification-flow/src/main/java/com/vaadin/flow/component/notification/GeneratedVaadinNotification.java"
},
"digest": {
"line_hashes": [
"62775866881117121243379313963709084356",
"269738299562262907846257631874678619718",
"120385894942479658993177779274629028855",
"223072729898109233991827425608855777166"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
}
]
source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-33605.json"