pkg:Maven/org.geoserver:gs-main

5 total CVEsHIGH3MEDIUM2

✅ Check your installed version

All known vulnerabilities

  • HIGH7.5CVE-2021-40822GeoServer allows SSRF via the option for setting a proxy host
    from 0, <= 2.18.5
  • HIGH7.2CVE-2023-41877GeoServer log file path traversal vulnerability
    from 0, <= 2.23.4
  • HIGH7.2CVE-2022-24847Improper Input Validation in GeoServer
    >= 2.20.0, < 2.20.4
  • MEDIUM4.8CVE-2024-23640GeoServer's Style Publisher vulnerable to Stored Cross-Site Scripting (XSS)
    from 0, < 2.23.3
  • MEDIUM4.5CVE-2024-34696GeoServer's Server Status shows sensitive environmental variables and Java properties
    >= 2.10.0, < 2.24.4