Detections
Analytics
GeoServer < 2.23.4 Multiples Vulnerabilities
high Web App Scanning Plugin ID 114534
Language:
Synopsis
GeoServer < 2.23.4 Multiples VulnerabilitiesDescription
According to its banner, the version of GeoServer running on the remote host is prior to 2.23.5 or 2.24.0 prior to 2.24.2. It is, therefore, affected by Multiples Vulnerabilities :- An Arbitrary file upload vulnerability in REST Coverage Store API - A Stored Cross-Site Scripting (XSS) vulnerability in GWC Seed Form - A Stored Cross-Site Scripting (XSS) vulnerability in GWC Demos Page - A Stored Cross-Site Scripting (XSS) vulnerability in MapML HTML Page - A Stored Cross-Site Scripting (XSS) vulnerability in WMS OpenLayers Format - A Stored Cross-Site Scripting (XSS) vulnerability in Simple SVG Renderer
Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number.
Solution
Upgrade to GeoServer version 2.23.4 or later.See Also
https://github.com/geoserver/geoserver/security/advisories/GHSA-56r3-f536-5gf7
https://github.com/geoserver/geoserver/security/advisories/GHSA-7x76-57fr-m5r5
https://github.com/geoserver/geoserver/security/advisories/GHSA-88wc-fcj9-q3r9
https://github.com/geoserver/geoserver/security/advisories/GHSA-9v5q-2gwq-q9hq
https://github.com/geoserver/geoserver/security/advisories/GHSA-fcpm-hchj-mh72
https://github.com/geoserver/geoserver/security/advisories/GHSA-fg9v-56hw-g525
Plugin Details
Severity: High
ID: 114534
Type: remote
Family: Component Vulnerability
Published: 12/10/2024
Updated: 12/10/2024
Scan Template: api, basic, full, pci, scan
Risk Information
VPR
Risk Factor: High
Score: 7.4
CVSS v2
Risk Factor: High
Base Score: 8.3
Vector: CVSS2#AV:N/AC:L/Au:M/C:C/I:C/A:C
CVSS Score Source: CVE-2023-51444
CVSS v3
Risk Factor: High
Base Score: 7.2
Vector: CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
CVSS Score Source: CVE-2023-51444
Vulnerability Information
CPE: cpe:2.3:a:geoserver:geoserver:*:*:*:*:*:*:*:*
Exploit Ease: No known exploits are available
Patch Publication Date: 3/19/2024
Vulnerability Publication Date: 3/19/2024
Reference Information
CVE: CVE-2023-51444, CVE-2024-23642, CVE-2024-23643, CVE-2024-23818, CVE-2024-23819, CVE-2024-23821
OWASP: 2010-A2, 2010-A4, 2013-A3, 2013-A4, 2013-A9, 2017-A5, 2017-A7, 2017-A9, 2021-A3, 2021-A4, 2021-A6
WASC: Cross-Site Scripting, Improper Input Handling
CAPEC: 1, 10, 101, 104, 108, 109, 110, 120, 13, 135, 136, 14, 153, 182, 209, 22, 23, 230, 231, 24, 250, 261, 267, 28, 3, 31, 42, 43, 45, 46, 47, 473, 52, 53, 588, 591, 592, 63, 64, 67, 7, 71, 72, 73, 78, 79, 8, 80, 81, 83, 85, 88, 9
DISA STIG: APSC-DV-002490, APSC-DV-002560, APSC-DV-002630
HIPAA: 164.306(a)(1), 164.306(a)(2)
ISO: 27001-A.12.6.1, 27001-A.14.2.5
NIST: sp800_53-CM-6b, sp800_53-SC-6, sp800_53-SI-10
OWASP API: 2019-API7, 2023-API8
OWASP ASVS: 4.0.2-12.5.2, 4.0.2-14.2.1, 4.0.2-5.1.3, 4.0.2-5.3.3