Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-29614

Malicious code in bioql PyPI...

8.2CVSS7.1AI score0.02257EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/05 10:0 p.m.6 views

CVE-2022-24847

GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. The GeoServer security mechanism can perform an unchecked JNDI lookup, which in turn can be used to perform class deserialization and result in arbitrary code execution. The same can...

7.2CVSS7.4AI score0.01465EPSS
Exploits0References1
CNVD
CNVD
added 2022/04/14 12:0 a.m.7 views

GeoServer Input Validation Error Vulnerability

GeoServer is written in Java open source software server . GeoServer has an input validation error vulnerability that can be exploited by an attacker to perform unchecked JNDI lookups, which in turn can be used to perform class deserialization and lead to arbitrary code execution...

7.2CVSS7.5AI score0.01465EPSS
Exploits0References1
OSV
OSV
added 2022/04/13 9:20 p.m.26 views

CVE-2022-24847 Improper Input Validation in GeoServer

GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. The GeoServer security mechanism can perform an unchecked JNDI lookup, which in turn can be used to perform class deserialization and result in arbitrary code execution. The same can...

7.2CVSS7.3AI score0.01465EPSS
Exploits0References3
NVD
NVD
added 2022/04/13 9:15 p.m.25 views

CVE-2022-24818

GeoTools is an open source Java library that provides tools for geospatial data. The GeoTools library has a number of data sources that can perform unchecked JNDI lookups, which in turn can be used to perform class deserialization and result in arbitrary code execution. Similar to the Log4J case,...

8.2CVSS0.02257EPSS
Exploits0References2
CVE
CVE
added 2022/04/13 8:55 p.m.97 views

CVE-2022-24818

CVE-2022-24818 – GeoTools is an open‑source Java library for geospatial data. It is affected by unchecked JNDI lookups that can lead to class deserialization and arbitrary code execution when JNDI names are user‑provided. The vulnerability requires admin‑level login to trigger, and is mitigated b...

8.2CVSS7.5AI score0.02257EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder