Openapi-generator Openapi Generator — known CVE vulnerabilities
Every CVE whose affected-product data names Openapi-generator Openapi Generator, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2021-21428 — CVSS 9.3 (critical): Openapi generator is a java tool which allows generation of API client libraries (SDK generation), server stubs, documentation and…
CVE-2023-27162 — CVSS 9.1 (critical): openapi-generator up to v6.4.0 was discovered to contain a Server-Side Request Forgery (SSRF) via the component /api/gen/clients/{language}…
CVE-2019-11405 — CVSS 8.1 (high): OpenAPI Tools OpenAPI Generator before 4.0.0-20190419.052012-560 uses http:// URLs in various build.gradle, build.gradle.mustache, and…
CVE-2021-21430 — CVSS 6.2 (medium): OpenAPI Generator allows generation of API client libraries (SDK generation), server stubs, documentation and configuration automatically…
CVE-2021-21429 — CVSS 4.0 (medium): OpenAPI Generator allows generation of API client libraries, server stubs, documentation and configuration automatically given an OpenAPI…