CVE-2021-46708

Name of the Vulnerable Software and Affected Versions swagger-ui-dist versions prior to 4.1.3

Description The issue allows a remote attacker to hijack the clicking action of the victim by persuading them to visit a malicious website, potentially leading to further attacks against the victim.

Recommendations For versions prior to 4.1.3, update to version 4.1.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the swagger-ui-dist package until a patch is applied.