Openapi Generator@* Security Vulnerabilities and Issues — Openapi Generator@* CVE List

Lucene search

Openapi-generatorOpenapi Generator*

5 matches found

CVE•added 2021/05/10 8:15 p.m.•96 views

CVE-2021-21430

OpenAPI Generator allows generation of API client libraries (SDK generation), server stubs, documentation and configuration automatically given an OpenAPI Spec. Using File.createTempFile in JDK will result in creating and using insecure temporary files that can leave application and system data vul...

6.2CVSS5.7AI score0.00157EPSS

CVE•added 2023/03/31 8:15 p.m.•83 views

CVE-2023-27162

openapi-generator up to v6.4.0 was discovered to contain a Server-Side Request Forgery (SSRF) via the component /api/gen/clients/{language}. This vulnerability allows attackers to access network resources and sensitive information via a crafted API request.

9.1CVSS8.9AI score0.00098EPSS

Web

CVE•added 2021/05/10 7:15 p.m.•76 views

CVE-2021-21428

Openapi generator is a java tool which allows generation of API client libraries (SDK generation), server stubs, documentation and configuration automatically given an OpenAPI Spec. openapi-generator-online creates insecure temporary folders with File.createTempFile during the code generation proce...

9.3CVSS7AI score0.0005EPSS

CVE•added 2021/04/27 8:15 p.m.•75 views

CVE-2021-21429

OpenAPI Generator allows generation of API client libraries, server stubs, documentation and configuration automatically given an OpenAPI Spec. Using File.createTempFile in JDK will result in creating and using insecure temporary files that can leave application and system data vulnerable to attack...

4CVSS3.7AI score0.00053EPSS

CVE•added 2019/04/22 11:29 a.m.•50 views

CVE-2019-11405

OpenAPI Tools OpenAPI Generator before 4.0.0-20190419.052012-560 uses http:// URLs in various build.gradle, build.gradle.mustache, and build.sbt files, which may have caused insecurely resolved dependencies.

8.1CVSS7.4AI score0.00196EPSS