Lucene search

Generated Code Contains Local Information Disclosure Vulnerability

🗓️ 11 Mar 2021 03:18:09Reported by GitHub Advisory DatabaseType

Generated Code Contains Local Information Disclosure Vulnerability impacting unix-like systems, specifically revealing sensitive information and incorrect permission assignments. Vulnerable method: File.createTempFil

Reporter	Title	Published	Views	Family All 15
OSV	Generated Code Contains Local Information Disclosure Vulnerability	11 Mar 202103:09	–	osv
OSV	Creation of Temporary File in Directory with Insecure Permissions in auto-generated Java, Scala code	11 May 202100:05	–	osv
OSV	CVE-2021-21364	11 Mar 202103:15	–	osv
OSV	CVE-2021-21363	11 Mar 202103:15	–	osv
Veracode	Information Disclosure	12 Mar 202101:59	–	veracode
Cvelist	CVE-2021-21364 Generated Code Contains Local Information Disclosure Vulnerability	11 Mar 202103:05	–	cvelist
Cvelist	CVE-2021-21363 Generator Web Application: Local Privilege Escalation Vulnerability via System Temp Directory	11 Mar 202103:05	–	cvelist
Prion	Design/Logic Flaw	11 Mar 202103:15	–	prion
Prion	Design/Logic Flaw	11 Mar 202103:15	–	prion
CVE	CVE-2021-21363	11 Mar 202103:15	–	cve

Vulners

Node

io.swagger swagger\-codegenRange<2.4.19

Source	Link
github	www.github.com/swagger-api/swagger-codegen/security/advisories/GHSA-hpv8-9rq5-hq7w
nvd	www.nvd.nist.gov/vuln/detail/CVE-2021-21364
github	www.github.com/swagger-api/swagger-codegen/commit/35adbd552d5f99b3ff1e0e59da228becc85190f2
github	www.github.com/advisories/GHSA-hpv8-9rq5-hq7w

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

11 Mar 2021 03:09Current

5.6Medium risk

Vulners AI Score5.6

CVSS22.1

CVSS35.3 - 5.5

EPSS0.00072

local information disclosure unix-like systems sensitive information exposure incorrect permission assignment api security