CVE-2024-23634 | GeoServer up to 2.23.4/2.24.1 REST Coverage Store API/REST Data Store API file inclusion (GHSA-75m5-hh4r-q9gx)

Posted by Angelo Barbosa | Mar 20, 2024 | CVE

A vulnerability was found in GeoServer up to 2.23.4/2.24.1. It has been declared as problematic. This vulnerability affects unknown code of the component REST Coverage Store API/REST Data Store API. The manipulation leads to file inclusion.

This vulnerability was named CVE-2024-23634. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-23634 | GeoServer up to 2.23.4/2.24.1 REST Coverage Store API/REST Data Store API file inclusion (GHSA-75m5-hh4r-q9gx)

Related Posts

CVE-2023-49775 | Denis Kobozev CSV Importer Plugin up to 0.3.8 on WordPress cross-site request forgery

CVE-2022-4001 | Motorola Q14 Mesh Router prior 1.5.0.16 API improper authentication

CVE-2024-40657 | Google Android 12/12L/13/14 AccountTypePreferenceLoader.java addPreferencesForType denial of service

CVE-2023-1111 | FastCMS up to 0.1.5 New Article Tab Title cross site scripting (I8ERNV)