Lucene search

GoogleOSV:CVE-2024-23643

HistoryMar 20, 2024 - 6:15 p.m.

CVE-2024-23643

2024-03-2018:15:09

Google

osv.dev

geoserver

xss

vulnerability

java

javascript

administrator

gwc seed form

catalog

fix

security

CVSS3

4.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N

EPSS

Percentile

15.5%

JSON

GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. A stored cross-site scripting (XSS) vulnerability exists in versions prior to 2.23.2 and 2.24.1 that enables an authenticated administrator with workspace-level privileges to store a JavaScript payload in the GeoServer catalog that will execute in the context of another administrator’s browser when viewed in the GWC Seed Form. Access to the GWC Seed Form is limited to full administrators by default and granting non-administrators access to this endpoint is not recommended. Versions 2.23.2 and 2.24.1 contain a fix for this issue.

References

github.com/geoserver/geoserver/security/advisories/GHSA-56r3-f536-5gf7

github.com/GeoWebCache/geowebcache/commit/9d010e09c784690ada8af43f594461a2553a62f0

github.com/GeoWebCache/geowebcache/issues/1172

github.com/GeoWebCache/geowebcache/pull/1174