Ubuntu 22.04 LTS / 24.04 LTS / 25.10 : GeoPandas vulnerability (USN-8083-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.10 host has a package installed that is affected by a vulnerability as referenced in the USN-8083-1 advisory. It was discovered that GeoPandas incorrectly handled certain input. An attacker could possibly use this issue to perform SQL injection attacks...

Linux Distros Unpatched Vulnerability : CVE-2025-69662

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SQL injection vulnerability in geopandas before v.1.1.2 allows an attacker to obtain sensitive information via the topostgis function being used to write...

CVE-2025-69662

SQL injection vulnerability in geopandas before v.1.1.2 allows an attacker to obtain sensitive information via the topostgis function being used to write GeoDataFrames to a PostgreSQL database...

CVE-2025-69662

SQL injection vulnerability in geopandas before v.1.1.2 allows an attacker to obtain sensitive information via the topostgis function being used to write GeoDataFrames to a PostgreSQL database...

Geopandas security vulnerabilities

Geopandas is an open-source Python tool for processing geospatial data. Versions of geopandas prior to 1.1.2 contained a security vulnerability. This vulnerability stemmed from a flaw in the topostgis function, which could allow attackers to access sensitive information when writing GeoDataFrames...

CVE-2025-69662

CVE-2025-69662 is a SQL injection vulnerability in geopandas prior to v1.1.2. The issue arises when using the to_postgis() function to write GeoDataFrames to a PostgreSQL database, enabling an attacker to obtain sensitive information. The CVSS v3.1 score is 8.6 (HIGH) with network attack vector a...