Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:29675
HistoryMar 12, 2021 - 2:05 a.m.

Privilege Escalation

2021-03-1202:05:02
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
4

0.0004 Low

EPSS

Percentile

15.7%

JSON

swagger-generator is vulnerable to privilege escalation. The use of method File.createTempFile allows an attacker to append the contents of the outputFolder, thereby leading to an execution of attacker controlled code if the code is written to this directory.

Related

osv 4
github 2
cvelist 2
cve 2
prion 2
nvd 2
osv
osv
Generator Web Application: Local Privilege Escalation Vulnerability via System Temp Directory
2021-03-11 03:09:16
Creation of Temporary File in Directory with Insecure Permissions in the OpenAPI-Generator online generator
2021-05-11 00:04:40
CVE-2021-21364
2021-03-11 03:15:12
github
github
Generator Web Application: Local Privilege Escalation Vulnerability via System Temp Directory
2021-03-11 03:09:16
Creation of Temporary File in Directory with Insecure Permissions in the OpenAPI-Generator online generator
2021-05-11 00:04:40
cvelist
cvelist
CVE-2021-21364 Generated Code Contains Local Information Disclosure Vulnerability
2021-03-11 03:05:16
CVE-2021-21363 Generator Web Application: Local Privilege Escalation Vulnerability via System Temp Directory
2021-03-11 03:05:23
cve
cve
CVE-2021-21364
2021-03-11 03:15:12
CVE-2021-21363
2021-03-11 03:15:11
prion
prion
Design/Logic Flaw
2021-03-11 03:15:00
Design/Logic Flaw
2021-03-11 03:15:00
nvd
nvd
CVE-2021-21364
2021-03-11 03:15:12
CVE-2021-21363
2021-03-11 03:15:11

0.0004 Low

EPSS

Percentile

15.7%

JSON
Related for VERACODE:29675
osv4github2cvelist2cve2prion2nvd2