A vulnerability was found in GeoServer up to 2.23.4/2.24.1. It has been declared as problematic. This vulnerability affects unknown code of the component REST Coverage Store API/REST Data Store API. The manipulation leads to file inclusion.

This vulnerability was named CVE-2024-23634. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.