Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 4:49 a.m.15 views

CVE-2024-36404

GeoTools is an open source Java library that provides tools for geospatial data. Prior to versions 31.2, 30.4, and 29.6, Remote Code Execution RCE is possible if an application uses certain GeoTools functionality to evaluate XPath expressions supplied by user input. Versions 31.2, 30.4, and 29.6...

9.8CVSS7.5AI score0.74908EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/08/02 12:0 a.m.34 views

OSGeo GeoTools RCE (CVE-2024-36404)

The version of OSGeo GeoTools installed on the remote host is affected by a remote code execution vulnerability, as follows: - Remote Code Execution is possible if an application uses certain GeoTools functionality to evaluate XPath expressions supplied by user input. Note that Nessus has not...

9.8CVSS7AI score0.74908EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/07/02 1:39 p.m.48 views

CVE-2024-36404 GeoTools Remote Code Execution (RCE) vulnerability in evaluating XPath expressions

GeoTools is an open source Java library that provides tools for geospatial data. Prior to versions 31.2, 30.4, and 29.6, Remote Code Execution RCE is possible if an application uses certain GeoTools functionality to evaluate XPath expressions supplied by user input. Versions 31.2, 30.4, and 29.6...

9.8CVSS0.74908EPSS
Exploits0References16
Circl
Circl
added 2024/07/02 1:43 a.m.9 views

CVE-2024-36404

creationtimestamp| type| source ---|---|--- 2024-07-02 01:43:04+00:00| published-proof-of-concept| https://github.com/geotools/geotools/security/advisories/GHSA-w3pj-wh35-fq8w 2024-07-09 08:10:17+00:00| published-proof-of-concept| https://t.me/CNArsenal/2767 2024-07-09 16:34:26+00:00|...

9.8CVSS6AI score0.74908EPSS
Exploits0References5
Rows per page
Query Builder