Forum Discussion
- h3xspiritNew Contributor
Not much information has been publicly posted. However, the two aforementioned CVEs have been created for two (2) critical (CVSS 10) SwaggerUI vulnerabilities that were discovered by https://pl.linkedin.com/in/arturczyz who cannot be reached.
Since we received these new vulnerability notifications, we would like to know just only the exact affected versions to make sure that we are secure. Otherwise what is the point for posting that two critical exploitable vulnerabilities have been identified for Swagger-UI with no details whatsoever.
Thank you,
h3xspirit
- fehguyStaff
Hi, this is the community forum for SwaggerHub, NOT swagger-ui. To help us keep focus on the SwaggerHub project, please send general OSS questions to our Google Group:
https://groups.google.com/forum/#!forum/swagger-swaggersocket
Or directly to the security team:
security@swagger.io
Related Content
- 5 years ago
- 5 years ago
- 3 years ago
Recent Discussions
- 15 days ago
- 2 months ago