VYPR

Valtimo

by Valtimo Platform

Source repositories

CVEs (3)

  • CVE-2026-42555CriMay 14, 2026
    risk 0.52cvss 9.1epss 0.01

    Valtimo is an open-source business process automation platform. com.ritense.valtimo:document from 12.0.0 to before 12.32.0, com.ritense.valtimo:case from 13.0.0 to before 13.23.0, and com.ritense.valtimo:contract from 13.4.0 to before 13.23.0 evaluate Spring Expression Language…

  • CVE-2026-44516HigMay 14, 2026
    risk 0.42cvss 7.6epss 0.00

    Valtimo is an open-source business process automation platform. From 12.4.0 to 12.33.0 and 13.26.0, the LoggingRestClientCustomizer in the web module automatically intercepts all outgoing HTTP calls made via Spring's RestClient and logs the full request body, response body, and…

  • CVE-2026-34164MedApr 16, 2026
    risk 0.25cvss 4.9epss 0.00

    Valtimo is an open-source business process automation platform. In versions 13.0.0 through 13.21.0, the InboxHandlingService logs the full content of every incoming inbox message at INFO level. Inbox messages can contain highly sensitive information including personal data…