Skip to main content
Components
Vulnerabilities
Pricing
MCP
API
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
org.apache.knox/gateway-openapi-ui 1.6.0 |… | Sonatype Guide
Get full component data and automated fixes with Sonatype Guide.
Sign up for free
maven
org.apache.knox
gateway-openapi-ui
1.6.0
gateway-openapi-ui 1.6.0
org.apache.knox
Published
Nov 4, 2021
•
Policy
compliance
maven Registry
Developer Trust Score
Recommended Version:
x.y.z
Recommended upgrade that meets your policy.
Compare Versions
Overview
Overview
Versions
4
Versions
4
Vulnerabilities
2
Vulnerabilities
2
Dependencies
2
Dependencies
2
Severity
Critical
(0)
High
(0)
Medium
(2)
Low
(0)
CVSS Score
0.0
10.0
EPSS Score
0.0
1.0
Malware
KEV Status
Published
Filter
Sort: Published (Newest first)
4.3
CVE-2018-25031
Swagger UI 4.1.2 and earlier could allow a remote attacker to conduct spoofing attacks. By persuading a victim to open a crafted URL, an attacker could exploit this vulnerability to display remote OpenAPI definitions. Note: This was originally claimed to be resolved in 4.1.3. However, third parties have indicated this is not resolved in 4.1.3 and even occurs in that version and possibly others.
affected
Severity
Medium
Published
Jun 15, 2022
6.1
sonatype-2021-4711
swagger-ui - Cross-site Scripting (XSS)
affected
Severity
Medium
Published
Dec 31, 2021
