-
CVSS Score
-Basic Information
Technical Details
Vulnerability Intelligence
Miggo AI
Miggo AIMiggo AI| Package Name | Ecosystem | Vulnerable Versions | First Patched Version |
|---|---|---|---|
| org.onosproject:onos-archetypes | maven | >= 1.9.0, <= 2.7.0 |
Miggo AIRoot Cause AnalysisThe vulnerability explicitly exists in the securityDefinitions > OAuth2 > authorizationURL parameter handling. In typical Swagger/OpenAPI implementations, these security definitions are configured programmatically. The vulnerability indicates the system fails to properly sanitize user-controlled input (authorizationURL) before embedding it in web documentation views. While exact code isn't available, the architectural pattern suggests a security configuration handler would be responsible for processing these OAuth2 parameters and rendering them in documentation templates, making it the most likely vulnerable component.