osgeo Latest High & Critical Vulnerabilities

Latest High & Critical vulnerabilities published by osgeo

JSON RSS CSV 🔔 Create Alert Trigger

9 April 2026

Dynamic-link Library Injection Vulnerability in OSGeo Project MapServer
CVE-2026-30479
OSGeoMapServer9.1CRITICAL

24 March 2026

Improper Memory Buffer Management in OSGeo GDAL Product
CVE-2026-4738
OsgeoGdal9.4CRITICAL

17 October 2022

Double-Free Vulnerability in Shapelib Software by OSGeo
CVE-2022-0699
OsgeoShapelib9.8CRITICAL

5 September 2022

Remote Code Execution Vulnerability in GeoNetwork by FAO
CVE-2021-28398
OsgeoGeonetwork7.2HIGH

2 May 2022

Server-Side Request Forgery in GeoServer by OSGeo
CVE-2021-40822
OsgeoGeoserver👾🟡EPSS 93%7.5HIGH

23 August 2021

XML External Entity Injection in PyWPS Affects File System Security
CVE-2021-39371
OsgeoOwslib7.5HIGH

20 July 2021

Buffer Overflow in netCDF of GDAL Product by OSGeo
CVE-2019-25050
OsgeoGdal7.8HIGH

29 October 2019

Improper Validation of Symbol Index Values in Mapserver by OSGeo
CVE-2010-1678
OsgeoMapserver7.5HIGH

14 October 2019

Double Free Vulnerability in GDAL Affected by Memory Management Flaw
CVE-2019-17545
OsgeoGdal9.8CRITICAL

8 December 2016

Information Exposure Vulnerability in MapServer by OSGeo
CVE-2016-9839
OsgeoMapserver7.5HIGH