A Cascading Style Sheets (CSS) injection vulnerability in Swagger UI before 3.23.11 allows attackers to use the Relative Path Overwrite (RPO) technique to perform CSS-based input field value exfiltration, such as exfiltration of a CSRF token value. In other words, this product intentionally allows the embedding of untrusted JSON data from remote servers, but it was not previously known that <style>@import within the JSON data was a functional attack method.
AI analysis not yet available
Plain-English explanation, risk summary, and remediation steps will appear here once AI analysis is complete.
No Fix Known
No patch has been released yet. Apply workarounds or mitigations where available.
| Vendor | Product | Versions | Fixed In |
|---|---|---|---|
| smartbear | swagger_ui | 3.23.11 | - |
| oracle | banking_apis | 18.1 - 18.3 | - |
| oracle | banking_apis | - |
Published
CVE disclosed publicly
Last Modified
Most recent update
Indexed to CVEInsight
Added to this platform
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
17
Affected Products
22
References
smartbear / swagger_ui
| - |
| oracle | banking_apis | - | - |
| oracle | banking_apis | - | - |
| oracle | banking_apis | - | - |
| oracle | banking_digital_experience | 18.1 - 18.3 | - |
| oracle | banking_digital_experience | - | - |
| oracle | banking_digital_experience | - | - |
| oracle | banking_digital_experience | - | - |
| oracle | banking_digital_experience | - | - |
| oracle | banking_platform | 2.4.0 - 2.10.0 | - |
| oracle | primavera_gateway | 16.2.0 - 16.2.11 | - |
| oracle | primavera_gateway | 17.12.0 - 17.12.8 | - |
| oracle | utilities_framework | - | - |
| oracle | utilities_framework | - | - |
| oracle | utilities_framework | - | - |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability
Impact