geoserver News Articles
Recent news articles refferecing the vendors vulnerabilities.
Earth Baxia Uses Spear-Phishing and GeoServer Exploit to Target APAC
APT & Targeted Attacks We observed Earth Baxia carrying out targeted attacks against APAC countries that involved advanced techniques like spear-phishing and customized malware, with data suggesting that...
Multiple malware families delivered exploiting GeoServer GeoTools flaw CVE-2024-36401
Multiple threat actors actively exploited the recently disclosed OSGeo GeoServer GeoTools flaw CVE-2024-36401 in malware-based campaigns.

Critical GeoServer Vulnerability Exploited in Global Malware Campaign
A critical GeoServer vulnerability is being exploited, allowing attackers to take control of systems for malware, cryptojacking, and botnet attacks.

Hackers Actively Exploiting GeoServer RCE Flaw, 6635 Servers Vulnerable
A critical vulnerability in GeoServer, an open-source Java-based software server, has put thousands of servers at risk.

PoC Released for GeoServer Exploit CVE-2024-36401
GeoServer is an open-source Java-based software server that enables users to view, edit, and share geospatial data. It offers a versatile and efficient solution for distributing geospatial information from various sources such as GIS databases, web-based data, and personal datasets. In versions of ...

6600+ Vulnerable GeoServer instances Exposed to the Internet
Security analysts have identified 6,635 GeoServer instances exposed to the internet, leaving them vulnerable to critical RCE attacks.
CISA 警告 GeoServer GeoTools 软件中存在被积极利用的 RCE 漏洞
CISA 于本周一警告称,GeoServer GeoTools 的一个严重远程代码执行漏洞(CVE-2024-36401)正在被攻击积极利用。
CISA warns critical Geoserver GeoTools RCE flaw is exploited in attacks
CISA is warning that a critical GeoServer GeoTools remote code execution flaw tracked as CVE-2024-36401 is being actively exploited in attacks.

CISA Warns of GeoServer RCE Vulnerability Under Active Exploitation
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert regarding a critical Remote Code Execution (RCE) vulnerability in GeoServer, identified as CVE-2024-36401.
CISA Warns of Actively Exploited RCE Flaw in GeoServer GeoTools Software
CISA warns of actively exploited vulnerability in GeoServer GeoTools. Critical flaw allows remote code execution. Users urged to patch immediately.
Organizations Warned of Exploited GeoServer Vulnerability
CISA says it has evidence that a recent critical-severity vulnerability in GeoServer is exploited in the wild.
Security alert: polyfill.io and CVE-2024-36401 - Astun Technology
In the interests of transparency and in keeping with the ethos of open source software, we’re advising clients of two security issues. To register for any further product/service alerts, including security...
墨知 - 软件供应链安全技术社区
墨知是国内首个专注软件供应链安全领域的技术社区,社区致力于为国内数百万技术人员提供全方位的软件供应链安全专业知识内容,包括软件供应链安全技术、漏洞情报、开源组件安全、SBOM、软件成分分析(SCA)、开源许可证合规等前沿技术及最佳实践