4 matches found
CVE-2024-36404
GeoTools is an open source Java library that provides tools for geospatial data. Prior to versions 31.2, 30.4, and 29.6, Remote Code Execution RCE is possible if an application uses certain GeoTools functionality to evaluate XPath expressions supplied by user input. Versions 31.2, 30.4, and 29.6...
OSGeo GeoTools RCE (CVE-2024-36404)
The version of OSGeo GeoTools installed on the remote host is affected by a remote code execution vulnerability, as follows: - Remote Code Execution is possible if an application uses certain GeoTools functionality to evaluate XPath expressions supplied by user input. Note that Nessus has not...
CVE-2024-36404 GeoTools Remote Code Execution (RCE) vulnerability in evaluating XPath expressions
GeoTools is an open source Java library that provides tools for geospatial data. Prior to versions 31.2, 30.4, and 29.6, Remote Code Execution RCE is possible if an application uses certain GeoTools functionality to evaluate XPath expressions supplied by user input. Versions 31.2, 30.4, and 29.6...
CVE-2024-36404
creationtimestamp| type| source ---|---|--- 2024-07-02 01:43:04+00:00| published-proof-of-concept| https://github.com/geotools/geotools/security/advisories/GHSA-w3pj-wh35-fq8w 2024-07-09 08:10:17+00:00| published-proof-of-concept| https://t.me/CNArsenal/2767 2024-07-09 16:34:26+00:00|...