CVE-2025-58360

HIGHCISA KEV

8.2

Descripcion

GeoServer is an open source server that allows users to share and edit geospatial data. From version 2.26.0 to before 2.26.2 and before 2.25.6, an XML External Entity (XXE) vulnerability was identified. The application accepts XML input through a specific endpoint /geoserver/wms operation GetMap. However, this input is not sufficiently sanitized or restricted, allowing an attacker to define external entities within the XML request. This issue has been patched in GeoServer 2.25.6, GeoServer 2.26.3, and GeoServer 2.27.0.

Detalles CVE

Puntuacion CVSS v3.18.2

SeveridadHIGH

Vector CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L

Vector de ataqueNETWORK

ComplejidadLOW

Privilegios requeridosNONE

Interaccion usuarioNONE

Publicado11/25/2025

Ultima modificacion12/12/2025

Fuentekev

Avistamientos honeypot0

CISA KEV

VendedorOSGeo

ProductoGeoServer

Nombre vulnerabilidadOSGeo GeoServer Improper Restriction of XML External Entity Reference Vulnerability

Fecha inclusion KEV2025-12-11

Fecha limite remediacion2026-01-01

Uso en ransomwareUnknown

Productos afectados

geoserver:geoserver

Debilidades (CWE)

CWE-611

Referencias

https://github.com/geoserver/geoserver/security/advisories/GHSA-fjf5-xgmq-5525(security-advisories@github.com)

https://osgeo-org.atlassian.net/browse/GEOS-11682(security-advisories@github.com)

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-58360(134c704f-9b21-4f2e-91b3-4a467353bcc0)

Correlaciones IOC

Sin correlaciones registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.