swagger-codegen is vulnerable to information disclosure. The vulnerability exists when the code is generated as a one-off occasion, and is not part of an automated CI/CD process, where the insecure File.createTempFile
is used to create temporary files in multiple locations.
CPE | Name | Operator | Version |
---|---|---|---|
swagger-codegen (core library) | le | 2.4.18 |