Lucene search
Veracode Vulnerability DatabaseVERACODE:40086HistoryApr 10, 2023 - 2:10 a.m.
Server-side Request Forgery (SSRF)
2023-04-1002:10:46
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
21
openapi-generator vulnerability
ssrf
improper validation
crafted api request
0.001 Low
EPSS
Percentile
42.3%
openapi-generator is vulnerable to Server-side Request Forgery (SSRF). The vulnerability exists due to the improper validation in the /api/gen/clients/{language} path, allowing an attacker to access network resources and sensitive information via a crafted API request.
| CPE | Name | Operator | Version |
|---|---|---|---|
| openapi-generator (core library) | le | 6.4.0 | |
| openapi-generator (core library) | le | 6.4.0 |
Related
osv
osv
CVE-2023-27162
2023-03-31 20:15:07
OpenAPI Generator vulnerable to Server-Side Request Forgery
2023-03-31 21:30:38
cve
cve
CVE-2023-27162
2023-03-31 20:15:07
prion
prion
Server side request forgery (ssrf)
2023-03-31 20:15:00
cvelist
cvelist
CVE-2023-27162
2023-03-31 00:00:00
github
github
OpenAPI Generator vulnerable to Server-Side Request Forgery
2023-03-31 21:30:38
nvd
nvd
CVE-2023-27162
2023-03-31 20:15:07