Vulnerabilities > Geoserver

DATE	CVE	VULNERABILITY TITLE	RISK
2024-03-20	CVE-2024-23640	Cross-site Scripting vulnerability in Geoserver GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. network low complexity geoserver CWE-79	4.8
2024-03-20	CVE-2023-41877	Path Traversal vulnerability in Geoserver GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. network low complexity geoserver CWE-22	7.2
2024-03-20	CVE-2023-51444	Unrestricted Upload of File with Dangerous Type vulnerability in Geoserver GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. network low complexity geoserver CWE-434	7.2
2023-10-26	CVE-2023-5786	Forced Browsing vulnerability in Geoserver Geowebcache A vulnerability was found in GeoServer GeoWebCache up to 1.15.1. network low complexity geoserver CWE-425	8.8
2023-06-12	CVE-2023-35042	Unspecified vulnerability in Geoserver GeoServer 2, in some configurations, allows remote attackers to execute arbitrary code via java.lang.Runtime.getRuntime().exec in wps:LiteralData within a wps:Execute request, as exploited in the wild in June 2023. network low complexity geoserver critical	9.8
2022-04-14	CVE-2022-24846	Deserialization of Untrusted Data vulnerability in Geoserver Geowebcache GeoWebCache is a tile caching server implemented in Java. network low complexity geoserver CWE-502	7.2

Vulnerabilities > Geoserver {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Geoserver"}]}