Org.geoserver:gs-wfs
This hub aggregates every CVE we track for Org.geoserver:gs-wfs, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
4
CVEs tracked
3
Critical
1
High
1
In CISA KEV
Severity distribution
CRITICAL3HIGH1
Monthly trend
1
0
0
0
0
0
0
0
0
0
0
2
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 4 most recently published vulnerabilities affecting Org.geoserver:gs-wfs.
- CVE-2025-30220GeoTools, GeoServer, and GeoNetwork XML External Entity (XXE) Processing Vulnerability in XSD schema handling9.9
- CVE-2024-29198GeoServer Vulnerable to Unauthenticated SSRF via TestWfsPost7.5
- CVE-2024-36401Remote Code Execution (RCE) vulnerability in evaluating property name expressions in GeoserverKEV9.8
- CVE-2023-35042GeoServer 2, in some configurations, allows remote attackers to execute arbitrary code via java.lang.Runtime.getRuntime().exec in wps:LiteralData within a wps:Execute request, as exploited in the w...9.8
Product normalization is registry-driven with AI assist and human review. How it works