GeoServer WFS - XXE Processing Vulnerability

Short Info

Level

Critical

Single Scan

Can be used by

Asset Owner

Estimated Time

10 seconds

Time Interval

8 days 18 hours

Scan only one

Domain, Subdomain, IPv4

Toolbox

-

GeoServer Web Feature Service (WFS) is vulnerable to an XML External Entity (XXE) processing attack due to improper handling of XML input. This vulnerability allows attackers to perform Out-of-Band (OOB) data exfiltration and Server-Side Request Forgery (SSRF) by exploiting the GeoTools library.

References:

https://github.com/geoserver/geoserver/security/advisories/GHSA-jj54-8f66-c5pc
https://docs.geoserver.org/latest/en/user/production/config.html#production-config-external-entities
https://github.com/geonetwork/core-geonetwork/pull/8757
https://github.com/geonetwork/core-geonetwork/pull/8803
https://github.com/geonetwork/core-geonetwork/pull/8812

Get started to protecting your digital assets

Start trial See the plans

GeoServer WFS - XXE Processing Vulnerability

Short Info

-

Detail

Category