Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:1 a.m.6 views

CVE-2023-43795

GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. The OGC Web Processing Service WPS specification is designed to process information from any server using GET and POST requests. This presents the opportunity for Server Side Request...

9.8CVSS6.7AI score0.67715EPSS
Exploits0References1
Circl
Circl
added 2025/01/31 12:0 a.m.43 views

CVE-2023-43795

creationtimestamp| type| source ---|---|--- 2025-01-31 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2025-01-31 2025-02-22 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2025-02-22 2025-03-08 00:00:00+00:00| exploited| The...

9.8CVSS7.3AI score0.67715EPSS
In wildExploits0References3
Vulnrichment
Vulnrichment
added 2023/10/24 10:14 p.m.13 views

CVE-2023-43795 WPS Server Side Request Forgery in GeoServer

GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. The OGC Web Processing Service WPS specification is designed to process information from any server using GET and POST requests. This presents the opportunity for Server Side Request...

8.6CVSS6.5AI score0.67715EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/10/24 10:14 p.m.44 views

CVE-2023-43795 WPS Server Side Request Forgery in GeoServer

GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. The OGC Web Processing Service WPS specification is designed to process information from any server using GET and POST requests. This presents the opportunity for Server Side Request...

8.6CVSS9.6AI score0.67715EPSS
Exploits0References1
OSV
OSV
added 2023/10/24 10:14 p.m.30 views

CVE-2023-43795 WPS Server Side Request Forgery in GeoServer

GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. The OGC Web Processing Service WPS specification is designed to process information from any server using GET and POST requests. This presents the opportunity for Server Side Request...

8.6CVSS8.9AI score0.67715EPSS
Exploits0References3
CVE
CVE
added 2023/10/24 10:14 p.m.132 views

CVE-2023-43795

CVE-2023-43795 concerns GeoServer, where the Web Processing Service (WPS) vulnerability allows unauthenticated SSRF via GET/POST requests. The issue stems from how WPS processes external URLs, enabling an attacker to make arbitrary HTTP requests and reach internal resources. Patched in GeoServer ...

9.8CVSS9.1AI score0.67715EPSS
In wildExploits0References1Affected Software1
Rows per page
Query Builder