1. Symantec-Broadcom-Horizontal/
  2. Security Response/
  3. Attack Signatures/
  4. Attack: Swagger Code Generator CVE-2016-5641

Attack: Swagger Code Generator CVE-2016-5641

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

Attackers can exploit these issues to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will likely cause a denial-of-service condition.

Additional Information

Swagger is a simple and powerful representation of RESTful API.

Swagger Code Generator is prone to multiple remote code-execution vulnerabilities because it fails to properly sanitize embedded inline parameters. Specifically, the issue occurs because some code generators don't account for the possibility of a malicious Swagger definition document. An attacker can exploit these issues by embedding the generated arbitrary code with a client or server to interact with the definition of service.

Note: These issue affect the NodeJS, PHP. Ruby, Java and other languages generated by the API.

Attackers can exploit these issues to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will likely cause a denial-of-service condition.

Affected

  • The researcher who discovered these issues has created a proof-of-concept. Please see the references for more information.

Response

Update if you are using affected version of Swagger. Otherwise you are safe from this attack.
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube