Skip to main content

Openapi Python Client

2 CVEs product

Monthly

CVE-2020-15142 PyPI CRITICAL PATCH Act Now

In openapi-python-client before version 0.5.3, clients generated with a maliciously crafted OpenAPI Document can generate arbitrary Python code. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. This Code Injection vulnerability could allow attackers to inject and execute arbitrary code within the application.

RCE Code Injection Python Openapi Python Client
NVD GitHub
CVSS 3.1
9.0
EPSS
1.6%
CVE-2020-15141 PyPI MEDIUM PATCH This Month

In openapi-python-client before version 0.5.3, there is a path traversal vulnerability. Rated medium severity (CVSS 4.1), this vulnerability is remotely exploitable, low attack complexity.

Python Path Traversal Openapi Python Client
NVD GitHub
CVSS 3.1
4.1
EPSS
0.9%
EPSS 2% CVSS 9.0
CRITICAL PATCH Act Now

In openapi-python-client before version 0.5.3, clients generated with a maliciously crafted OpenAPI Document can generate arbitrary Python code. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. This Code Injection vulnerability could allow attackers to inject and execute arbitrary code within the application.

RCE Code Injection Python +1
NVD GitHub
EPSS 1% CVSS 4.1
MEDIUM PATCH This Month

In openapi-python-client before version 0.5.3, there is a path traversal vulnerability. Rated medium severity (CVSS 4.1), this vulnerability is remotely exploitable, low attack complexity.

Python Path Traversal Openapi Python Client
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy