VYPR

Maven package

io.quarkiverse.openapi.generator/quarkus-openapi-generator

pkg:maven/io.quarkiverse.openapi.generator/quarkus-openapi-generator

Vulnerabilities (2)

  • CVE-2026-42333MedMay 9, 2026
    affected < 2.16.0-ltsfixed 2.16.0-lts

    Quarkus OpenAPI Generator is Quarkus' extensions for generation of Rest Clients and server stubs generation. Prior to versions 2.11.1-lts, 2.16.0-lts, and 2.17.0, the generated authentication filter matches OpenAPI path templates too broadly when deciding whether to attach creden

  • CVE-2026-40180HigApr 10, 2026
    affected < 2.16.0fixed 2.16.0

    Quarkus OpenAPI Generator is Quarkus' extensions for generation of Rest Clients and server stubs generation. Prior to 2.16.0 and 2.15.0-lts, the unzip() method in ApicurioCodegenWrapper.java extracts ZIP entries without validating that the resolved file path stays within the inte