Openapi-generator

Openapi Generator

5 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.1

CVE-2023-27162

Exploit
  • EPSS 0.13%
  • Veröffentlicht 31.03.2023 20:15:07
  • Zuletzt bearbeitet 18.02.2025 17:15:17

openapi-generator up to v6.4.0 was discovered to contain a Server-Side Request Forgery (SSRF) via the component /api/gen/clients/{language}. This vulnerability allows attackers to access network resources and sensitive information via a crafted API r...

5.5

CVE-2021-21430

Exploit
  • EPSS 0.07%
  • Veröffentlicht 10.05.2021 20:15:07
  • Zuletzt bearbeitet 21.11.2024 05:48:20

OpenAPI Generator allows generation of API client libraries (SDK generation), server stubs, documentation and configuration automatically given an OpenAPI Spec. Using `File.createTempFile` in JDK will result in creating and using insecure temporary f...

7

CVE-2021-21428

Exploit
  • EPSS 0.05%
  • Veröffentlicht 10.05.2021 19:15:08
  • Zuletzt bearbeitet 21.11.2024 05:48:20

Openapi generator is a java tool which allows generation of API client libraries (SDK generation), server stubs, documentation and configuration automatically given an OpenAPI Spec. openapi-generator-online creates insecure temporary folders with Fil...

3.3

CVE-2021-21429

  • EPSS 0.05%
  • Veröffentlicht 27.04.2021 20:15:08
  • Zuletzt bearbeitet 21.11.2024 05:48:20

OpenAPI Generator allows generation of API client libraries, server stubs, documentation and configuration automatically given an OpenAPI Spec. Using `File.createTempFile` in JDK will result in creating and using insecure temporary files that can lea...

7.4

CVE-2019-11405

Exploit
  • EPSS 0.2%
  • Veröffentlicht 22.04.2019 11:29:04
  • Zuletzt bearbeitet 21.11.2024 04:21:02

OpenAPI Tools OpenAPI Generator before 4.0.0-20190419.052012-560 uses http:// URLs in various build.gradle, build.gradle.mustache, and build.sbt files, which may have caused insecurely resolved dependencies.