Homepage

org.openapitools:openapi-generator-maven-plugin@5.0.0-beta3 vulnerabilities

  • latest version

    7.12.0

  • latest non vulnerable version

    7.12.0

  • first published

    6 years ago

  • latest version published

    1 months ago

  • licenses detected

  • package registry

    View on Maven Central Repository
    • Go back to all versions of this package
    Report a new vulnerability Found a mistake?

    Direct Vulnerabilities

    Known vulnerabilities in the org.openapitools:openapi-generator-maven-plugin package. This does not include vulnerabilities belonging to this package’s dependencies.

    How to fix?

    Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

    Fix for free
    VulnerabilityVulnerable Version
    • M
    Insecure Temporary File

    org.openapitools:openapi-generator-maven-plugin is an It allows generation of API client libraries (SDK generation), server stubs, documentation and configuration automatically given an OpenAPI Spec (v2, v3)

    Affected versions of this package are vulnerable to Insecure Temporary File. Using File.createTempFile in JDK results in creating and using insecure temporary files that can leave application and system data vulnerable to attacks.

    Note: Only impacts unix-like systems where the local system temporary directory is shared between all users. Does not impact Windows or modern versions of MacOS.

    How to fix Insecure Temporary File?

    Upgrade org.openapitools:openapi-generator-maven-plugin to version 5.1.0 or higher.

    [,5.1.0)
    Go back to all versions of this package