Known Vulnerabilities for Openapi-ts by Hey-api
Listed below are 10 of the newest known vulnerabilities associated with "Openapi-ts" by "Hey-api".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-59867 json | Kiota is an OpenAPI based HTTP Client code generator. Prior to 1.32.5, Kiota resolved OpenAPI $ref values by fetching remote ... | Not Provided | 2026-07-16 | 2026-07-16 |
| CVE-2026-59866 json | Kiota is an OpenAPI based HTTP Client code generator. Prior to 1.32.5, Kiota emitted x-ms-kiota-info clientClassName and clie... | Not Provided | 2026-07-16 | 2026-07-17 |
| CVE-2026-59865 json | Kiota is an OpenAPI based HTTP Client code generator. Prior to 1.32.5, `kiota info` read x-ms-kiota-info.languagesInformation... | Not Provided | 2026-07-16 | 2026-07-17 |
| CVE-2026-59864 json | Kiota is an OpenAPI based HTTP Client code generator. Prior to 1.32.5, `kiota plugin add` and `kiota plugin generate` (with `... | Not Provided | 2026-07-16 | 2026-07-17 |
| CVE-2026-59863 json | Kiota is an OpenAPI based HTTP Client code generator. Prior to 1.32.5, Kiota honored a poisoned .kiota/workspace.json workspa... | Not Provided | 2026-07-16 | 2026-07-16 |
| CVE-2026-59862 json | Kiota is an OpenAPI based HTTP Client code generator. Prior to 1.32.0, Kiota's Python generator let attacker-controlled enum ... | Not Provided | 2026-07-16 | 2026-07-17 |
| CVE-2026-59861 json | Kiota is an OpenAPI based HTTP Client code generator. Prior to 1.32.0, Kiota's Ruby generator embedded OpenAPI default fields... | Not Provided | 2026-07-16 | 2026-07-17 |
| CVE-2026-59860 json | Kiota is an OpenAPI based HTTP Client code generator. Prior to 1.32.3, Kiota is affected by a code-generation injection vulne... | Not Provided | 2026-07-16 | 2026-07-17 |
| CVE-2026-59859 json | Kiota is an OpenAPI based HTTP Client code generator. Prior to 1.32.4, Kiota's PHP generator embedded OpenAPI description, de... | Not Provided | 2026-07-16 | 2026-07-17 |
| CVE-2026-58377 json | JeecgBoot through 3.9.2 contains a broken access control vulnerability that allows authenticated low-privilege users to perfo... | Not Provided | 2026-06-30 | 2026-07-14 |