Improper input validation in Chrimle Io.github.chrimle:openapi-to-java-records-mustache-templates-parent

CVE-2026-32735

openapi-to-java-records-mustache-templates allows users to generate Java Records from OpenAPI specifications. Starting in version 5.1.1 and prior to version 5.5.1, the parent POM file of this project (`openapi-to-java-records-mustache-temp…

Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)

EPSS: 0.001 (31.7th percentile) — read the EPSS interpretation.

Affected products

Chrimle Io.github.chrimle:openapi-to-java-records-mustache-templates-parent — versions >= 3.1.1, < 3.5.1
Chrimle Openapi-to-java-records-mustache-templates-parent — versions >= 3.1.1, < 3.5.1

Weakness classification (CWE)

CWE-20 — Improper Input Validation

References

https://github.com/Chrimle/openapi-to-java-records-mustache-templates/security/advisories/GHSA-3hrg-hjvj-9v66 (x_refsource_CONFIRM)
https://github.com/Chrimle/openapi-to-java-records-mustache-templates/pull/534 (x_refsource_MISC)
https://github.com/Chrimle/openapi-to-java-records-mustache-templates/pull/620 (x_refsource_MISC)
https://github.com/Chrimle/openapi-to-java-records-mustache-templates/releases/tag/v3.5.1 (x_refsource_MISC)