Openapi Python Client Project

openapi-python-client_project

2 CVEs • 1 product

Products (1)

Click to collapse

Toggle

Openapi Python Client

openapi-python-client

2 CVEs

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2020-15142 1Openapi Python Client Project 1Openapi Python Client Nov 21, 2024 Aug 14, 2020 N/A· v4 9.0 CRITICAL· v3 6.0 MEDIUM· v2 In openapi-python-client before version 0.5.3, clients generated with a maliciously crafted OpenAPI Document can generate arbitrary Python code. Subsequent execution of this malicious client is arbitrary code execution.
CVE-2020-15141 1Openapi Python Client Project 1Openapi Python Client Nov 21, 2024 Aug 14, 2020 N/A· v4 4.1 MEDIUM· v3 4.0 MEDIUM· v2 In openapi-python-client before version 0.5.3, there is a path traversal vulnerability. If a user generated a client using a maliciously crafted OpenAPI document, it is possible for generated files to be placed in arbitr...Show more In openapi-python-client before version 0.5.3, there is a path traversal vulnerability. If a user generated a client using a maliciously crafted OpenAPI document, it is possible for generated files to be placed in arbitrary locations on disk.Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2020-15142

1Openapi Python Client Project

1Openapi Python Client

Nov 21, 2024

Aug 14, 2020

N/A· v4

9.0 CRITICAL· v3

6.0 MEDIUM· v2

In openapi-python-client before version 0.5.3, clients generated with a maliciously crafted OpenAPI Document can generate arbitrary Python code. Subsequent execution of this malicious client is arbitrary code execution.

CVE-2020-15141

1Openapi Python Client Project

1Openapi Python Client

Nov 21, 2024

Aug 14, 2020

N/A· v4

4.1 MEDIUM· v3

4.0 MEDIUM· v2

In openapi-python-client before version 0.5.3, there is a path traversal vulnerability. If a user generated a client using a maliciously crafted OpenAPI document, it is possible for generated files to be placed in arbitr...Show more