Maven/org.geoserver:gs-wfs — 4 CVEs

CRITICAL9.8CVE-2024-36401⚠ KEVRemote Code Execution (RCE) vulnerability in geoserver

>= 2.24.0, < 2.24.4

CRITICAL9.8CVE-2023-35042GeoServer RCE due to improper control of generation of code in jai-ext`Jiffle` map algebra language

from 0, < 2.18.6

HIGH8.2CVE-2025-30220[XBOW-025-068] XML External Entity (XXE) Processing Vulnerability in GeoServer WFS Service

>= 2.27.0, < 2.27.1

HIGH7.5GeoServer Vulnerable to Unauthenticated SSRF via TestWfsPost

>= 2.0.0, < 2.24.4

pkg:Maven/org.geoserver:gs-wfs