Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-sp5n-ncjd-rkft
Vulnerability ID VCID-sp5n-ncjd-rkft
Aliases CVE-2016-1000229
GHSA-h8wp-wgcq-qhrf
Summary XSS in key names Swagger is a standardized library for documenting API endpoints and their parameters. Swagger uses a JSON document to organize API endpoint parameter data. Swagger-ui contains a cross site scripting (XSS) vulnerability in the key names for the following object path in the JSON document: ``` .definitions.<USER_DEFINED>.properties.<INJECTABLE_KEY_NAME> ``` Supplying a key name with script tags causes arbitrary code execution. In addition it is possible to load the arbitrary JSON files remotely via the `URL` query-string parameter. This advisory is being disclosed before a public patched release is available because of a public Github issue documenting the vulnerability.
Status Published
Exploitability 0.5
Weighted Severity 8.2
Risk 4.1
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
System Score Found at
cvssv3.1 6.1 https://access.redhat.com/errata/RHSA-2017:0868
generic_textual MODERATE https://access.redhat.com/errata/RHSA-2017:0868
cvssv3 6.1 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-1000229.json
epss 0.04978 https://api.first.org/data/v1/epss?cve=CVE-2016-1000229
cvssv3.1 6.1 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-1000229
generic_textual MODERATE https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-1000229
cvssv3 9.1 https://en.wikipedia.org/wiki/Content_Security_Policy
cvssv3 9.1 https://github.com/nodejs/security-wg/blob/main/vuln/npm/126.json
cvssv3.1 6.1 https://github.com/swagger-api/swagger-ui
generic_textual MODERATE https://github.com/swagger-api/swagger-ui
cvssv3 9.1 https://github.com/swagger-api/swagger-ui/issues/1865
cvssv3.1 6.1 https://nvd.nist.gov/vuln/detail/CVE-2016-1000229
generic_textual MODERATE https://nvd.nist.gov/vuln/detail/CVE-2016-1000229
Reference id Reference type URL
https://access.redhat.com/errata/RHSA-2017:0868
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-1000229.json
https://api.first.org/data/v1/epss?cve=CVE-2016-1000229
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-1000229
https://en.wikipedia.org/wiki/Content_Security_Policy
https://github.com/swagger-api/swagger-ui
https://github.com/swagger-api/swagger-ui/issues/1865
https://nvd.nist.gov/vuln/detail/CVE-2016-1000229
126 https://github.com/nodejs/security-wg/blob/main/vuln/npm/126.json
1360275 https://bugzilla.redhat.com/show_bug.cgi?id=1360275
No exploits are available.
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Found at https://access.redhat.com/errata/RHSA-2017:0868
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-1000229.json
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Found at https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-1000229
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Found at https://github.com/swagger-api/swagger-ui
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2016-1000229
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.89865
EPSS Score 0.04978
Published At June 4, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-06-02T03:45:03.166031+00:00 Npm Importer Import https://github.com/nodejs/security-wg/blob/main/vuln/npm/126.json 38.6.0