GeoServer DB2 DataStore Extension has a JNDI Vulnerability via Store Connection

Summary Administrator can perform JNDI attack through specially crafted DB2 jdbc url leading to Remote Code Execution RCE. Impact If GeoServer has DB2 extension installed, this vulnerability can lead to executing arbitrary code. Details Authenticated users can access Vector Data Sources page to...

XML External Entity (XXE)

GeoServer is vulnerable to XML External Entity XXE. The vulnerability is due to improper handling of XML entity resolution in schema parsing, which allows an attacker to exploit external entity references to access sensitive data or perform unauthorized actions...

CISA Flags Actively Exploited GeoServer XXE Flaw in Updated KEV Catalog

The U.S. Cybersecurity and Infrastructure Security Agency CISA on Thursday added a high-severity security flaw impacting OSGeo GeoServer to its Known Exploited Vulnerabilities KEV catalog, based on evidence of active exploitation in the wild. The vulnerability in question is CVE-2025-58360 CVSS...

CVE-2025-58360

GeoServer is an open source server that allows users to share and edit geospatial data. From version 2.26.0 to before 2.26.2 and before 2.25.6, an XML External Entity XXE vulnerability was identified. The application accepts XML input through a specific endpoint /geoserver/wms operation GetMap...

CVE-2025-58360 GeoServer is vulnerable to an Unauthenticated XML External Entities (XXE) attack via WMS GetMap feature

GeoServer is an open source server that allows users to share and edit geospatial data. From version 2.26.0 to before 2.26.2 and before 2.25.6, an XML External Entity XXE vulnerability was identified. The application accepts XML input through a specific endpoint /geoserver/wms operation GetMap...

EUVD-2024-0917

Malicious code in bioql PyPI...

EUVD-2023-58069

Malicious code in bioql PyPI...

EUVD-2025-17684

Malicious code in bioql PyPI...

EUVD-2025-17814

Malicious code in bioql PyPI...

EUVD-2024-0920

Malicious code in bioql PyPI...

EUVD-2024-3529

Malicious code in bioql PyPI...

EUVD-2024-0890

Malicious code in bioql PyPI...

EUVD-2024-0889

Malicious code in bioql PyPI...

EUVD-2024-0853

Malicious code in bioql PyPI...

EUVD-2024-0864

Malicious code in bioql PyPI...

EUVD-2024-2371

Malicious code in bioql PyPI...

EUVD-2024-0872

Malicious code in bioql PyPI...

EUVD-2023-2717

Malicious code in bioql PyPI...

EUVD-2022-1623

Malicious code in bioql PyPI...

CISA Releases Advisory on Lessons Learned from an Incident Response Engagement

Today, CISA released a cybersecurity advisory detailing lessons learned from an incident response engagement following the detection of potential malicious activity identified through security alerts generated by the agency’s endpoint detection and response tool. This advisory, CISA Shares Lesson...