cbcvebase.

Osgeo Geoserver vulnerabilities

16 known vulnerabilities affecting osgeo/geoserver.

Total CVEs
16
CISA KEV
0
Public exploits
6
Exploited in wild
7
Severity breakdown
CRITICAL3HIGH9MEDIUM4

Vulnerabilities

Page 1 of 1
CVE-2023-25157P1CRITICALCVSS 9.8ExploitedPoCfixed in 2.18.7≥ 2.19.0, < 2.19.7+3 more2023-02-21
CVE-2023-25157 [CRITICAL] CWE-89 CVE-2023-25157: GeoServer is an open source software server written in Java that allows users to share and edit geos GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. GeoServer includes support for the OGC Filter expression language and the OGC Common Query Language (CQL) as part of the Web Feature Service (WFS) and Web Map Service (WMS) protocols. CQL is also supported through the Web Coverage Servic
nvd
CVE-2023-43795P1CRITICALCVSS 9.8ExploitedPoCfixed in 2.22.5≥ 2.23.0, < 2.23.22023-10-25
CVE-2023-43795 [CRITICAL] CWE-918 CVE-2023-43795: GeoServer is an open source software server written in Java that allows users to share and edit geos GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. The OGC Web Processing Service (WPS) specification is designed to process information from any server using GET and POST requests. This presents the opportunity for Server Side Request Forgery. This vulnerability has been patched in ver
nvd
CVE-2025-30220P1CRITICALCVSS 9.1ExploitedPoCfixed in 2.25.7≥ 2.26.0, < 2.26.3+1 more2025-06-10
CVE-2025-30220 [CRITICAL] CWE-611 CVE-2025-30220: GeoServer is an open source server that allows users to share and edit geospatial data. GeoTools Sch GeoServer is an open source server that allows users to share and edit geospatial data. GeoTools Schema class use of Eclipse XSD library to represent schema data structure is vulnerable to XML External Entity (XXE) exploit. This impacts whoever exposes XML processing with gt-xsd-core involved in parsing, when the documents carry a reference to an
nvd
CVE-2021-40822P1HIGHCVSS 7.5ExploitedPoC≤ 2.18.5≥ 2.19.0, < 2.19.32022-05-02
CVE-2021-40822 [HIGH] CWE-918 CVE-2021-40822: GeoServer through 2.18.5 and 2.19.x through 2.19.2 allows SSRF via the option for setting a proxy ho GeoServer through 2.18.5 and 2.19.x through 2.19.2 allows SSRF via the option for setting a proxy host.
nvd
CVE-2024-29198P1HIGHCVSS 8.2ExploitedPoC≥ 2.0.0, < 2.24.4≥ 2.25.0, < 2.25.22025-06-10
CVE-2024-29198 [HIGH] CWE-918 CVE-2024-29198: GeoServer is an open source software server written in Java that allows users to share and edit geos GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. It possible to achieve Service Side Request Forgery (SSRF) via the Demo request endpoint if Proxy Base URL has not been set. Upgrading to GeoServer 2.24.4, or 2.25.2, removes the TestWfsPost servlet resolving this issue.
nvd
CVE-2025-27505P1MEDIUMCVSS 5.3ExploitedPoCfixed in 2.25.6≥ 2.26.0, < 2.26.32025-06-10
CVE-2025-27505 [MEDIUM] CWE-862 CVE-2025-27505: GeoServer is an open source server that allows users to share and edit geospatial data. It is possib GeoServer is an open source server that allows users to share and edit geospatial data. It is possible to bypass the default REST API security and access the index page. The REST API security handles rest and its subpaths but not rest with an extension (e.g., rest.html). The REST API index can disclose whether certain extensions are installed. This
nvd
CVE-2022-24847P2HIGHCVSS 7.2Exploitedfixed in 2.19.6≥ 2.20.0, < 2.20.42022-04-13
CVE-2022-24847 [HIGH] CWE-20 CVE-2022-24847: GeoServer is an open source software server written in Java that allows users to share and edit geos GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. The GeoServer security mechanism can perform an unchecked JNDI lookup, which in turn can be used to perform class deserialization and result in arbitrary code execution. The same can happen while configuring data stores with data sources loc
nvd
CVE-2025-58175P3HIGHCVSS 8.2fixed in 2.26.4≥ 2.27.0, < 2.27.32026-06-18
CVE-2025-58175 [HIGH] CWE-20 CVE-2025-58175: GeoServer is an open source server that allows users to share and edit geospatial data. Prior to ver GeoServer is an open source server that allows users to share and edit geospatial data. Prior to versions 2.26.4 and 2.27.3, a GeoServer that uses `ENTITY_RESOLUTION_ALLOWLIST` may allow attacker to perform unauthenticated Server-Side Request Forgery (SSRF). This vulnerability requires that GeoServer is set up to use a proxy base URL and the `ENTITY_RE
nvd
CVE-2025-27511P3HIGHCVSS 7.2fixed in 2.27.02026-06-18
CVE-2025-27511 [HIGH] CWE-74 CVE-2025-27511: GeoServer is an open source server that allows users to share and edit geospatial data. Prior to ver GeoServer is an open source server that allows users to share and edit geospatial data. Prior to version 2.27.0 of the GeoServer DB2 DataStore Extension, an administrator can perform a JNDI attack through specially crafted DB2 jdbc url leading to to Remote Code Execution (RCE). Version 2.27.0 fixes the issue.
nvd
CVE-2025-52465P3HIGHCVSS 7.2fixed in 2.26.4≥ 2.27.0, < 2.27.32026-06-18
CVE-2025-52465 [HIGH] CWE-73 CVE-2025-52465: GeoServer is an open source server that allows users to share and edit geospatial data. Prior to ver GeoServer is an open source server that allows users to share and edit geospatial data. Prior to versions 2.26.4 and 2.27.3, a vulnerability exists that allows an authenticated administrator with access to GeoServer's security system to pass arbitrary file names to the Master Password Dump web page and create files containing the master password in pla
nvd
CVE-2024-34711P3HIGHCVSS 8.2fixed in 2.25.02025-06-10
CVE-2024-34711 [HIGH] CWE-200 CVE-2024-34711: GeoServer is an open source server that allows users to share and edit geospatial data. An improper GeoServer is an open source server that allows users to share and edit geospatial data. An improper URI validation vulnerability exists that enables an unauthorized attacker to perform XML External Entities (XEE) attack, then send GET request to any HTTP server. By default, GeoServer use PreventLocalEntityResolver class from GeoTools to filter out mali
nvd
CVE-2024-38524P3HIGHCVSS 7.5fixed in 2.25.6≥ 2.26.0, < 2.26.22025-06-10
CVE-2024-38524 [HIGH] CWE-200 CVE-2024-38524: GeoServer is an open source server that allows users to share and edit geospatial data. org.geowebca GeoServer is an open source server that allows users to share and edit geospatial data. org.geowebcache.GeoWebCacheDispatcher.handleFrontPage(HttpServletRequest, HttpServletResponse) has no check to hide potentially sensitive information from users except for a hidden system property to hide the storage locations that defaults to showing the locations
nvd
CVE-2025-30145P3HIGHCVSS 7.5fixed in 2.25.7≥ 2.26.0, < 2.26.32025-06-10
CVE-2025-30145 [HIGH] CWE-835 CVE-2025-30145: GeoServer is an open source server that allows users to share and edit geospatial data. Malicious Ji GeoServer is an open source server that allows users to share and edit geospatial data. Malicious Jiffle scripts can be executed by GeoServer, either as a rendering transformation in WMS dynamic styles or as a WPS process, that can enter an infinite loop to trigger denial of service. This vulnerability is fixed in 2.27.0, 2.26.3, and 2.25.7. This vuln
nvd
CVE-2023-41339P4MEDIUMCVSS 5.3fixed in 2.22.5≥ 2.23.0, < 2.23.22023-10-25
CVE-2023-41339 [MEDIUM] CWE-918 CVE-2023-41339: GeoServer is an open source software server written in Java that allows users to share and edit geos GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. The WMS specification defines an ``sld=`` parameter for GetMap, GetLegendGraphic and GetFeatureInfo operations for user supplied "dynamic styling". Enabling the use of dynamic styles, without also configuring URL checks, provides the oppo
nvd
CVE-2024-35230P4MEDIUMCVSS 5.3≥ 2.0.0, < 2.25.12024-12-16
CVE-2024-35230 [MEDIUM] CWE-200 CVE-2024-35230: GeoServer is an open source software server written in Java that allows users to share and edit geos GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. In affected versions the welcome and about page includes version and revision information about the software in use (including library and components used). This information is sensitive from a security point of view because it allows sof
nvd
CVE-2024-40625P4MEDIUMCVSS 4.9fixed in 2.26.02025-06-10
CVE-2024-40625 [MEDIUM] CWE-918 CVE-2024-40625: GeoServer is an open source server that allows users to share and edit geospatial data. The Coverage GeoServer is an open source server that allows users to share and edit geospatial data. The Coverage rest api /workspaces/{workspaceName}/coveragestores/{storeName}/{method}.{format} allows attackers to upload files with a specified url (with {method} equals 'url') with no restrict. This vulnerability is fixed in 2.26.0.
nvd
Osgeo Geoserver vulnerabilities | cvebase