| Vulnerable Component Details | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Type | Namespace | Name | Version | Package URL | |||||||||
| maven | org.webjars | swagger-ui | 3.51.1 | pkg:maven/org.webjars/swagger-ui@3.51.1?type=jar | |||||||||
| Vulnerability Details | |||||||||||||
| ID | CVE-2018-25031 | ||||||||||||
| Description | Swagger UI before 4.1.3 could allow a remote attacker to conduct spoofing attacks. By persuading a victim to open a crafted URL, an attacker could exploit this vulnerability to display remote OpenAPI definitions. | ||||||||||||
| Ratings |
|
||||||||||||
| Found By | Sonotype OSS-Index | ||||||||||||
| References / Advisories | |||||||||||||
| Weakness Enumeration | |||||||||||||