cve
base
Search
Products
Trending
About
Docs
Pricing
Home
/
Products
/
osgeo
/
Osgeo Pywps
Osgeo Pywps vulnerabilities
1 known vulnerability affecting
osgeo/pywps
.
Version
All versions
Total CVEs
1
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH
1
Vulnerabilities
Page 1 of 1
CVE-2021-39371
HIGH
CVSS 7.5
fixed in 4.4.5
2021-08-23
CVE-2021-39371 [HIGH] CWE-611 CVE-2021-39371: An XML external entity (XXE) injection in PyWPS before 4.4.5 allows an attacker to view files on the An XML external entity (XXE) injection in PyWPS before 4.4.5 allows an attacker to view files on the application server filesystem by assigning a path to the entity. OWSLib 0.24.1 may also be affected.
ghsa
nvd
osv