Search

Find a vulnerability

Search criteria

    2 vulnerabilities found for org.geoserver.extension:gs-db2 by geoserver

    CVE-2025-27511 (GCVE-0-2025-27511)

    Vulnerability from nvd – Published: 2026-06-18 14:23 – Updated: 2026-06-24 03:56
    VLAI
    Title
    GeoServer DB2 DataStore Extension has a JNDI Vulnerability via Store Connection
    Summary
    GeoServer is an open source server that allows users to share and edit geospatial data. Prior to version 2.27.0 of the GeoServer DB2 DataStore Extension, an administrator can perform a JNDI attack through specially crafted DB2 jdbc url leading to to Remote Code Execution (RCE). Version 2.27.0 fixes the issue.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-502 - Deserialization of Untrusted Data
    • CWE-74 - Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')
    Assigner
    Impacted products
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-27511",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-23T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-24T03:56:02.624Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "org.geoserver.extension:gs-db2",
              "vendor": "geoserver",
              "versions": [
                {
                  "status": "affected",
                  "version": "\u003c 2.27.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "GeoServer is an open source server that allows users to share and edit geospatial data. Prior to version 2.27.0 of the GeoServer DB2 DataStore Extension, an administrator can perform a JNDI attack through specially crafted DB2 jdbc url leading to to Remote Code Execution (RCE). Version 2.27.0 fixes the issue."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.2,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-502",
                  "description": "CWE-502: Deserialization of Untrusted Data",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-74",
                  "description": "CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component (\u0027Injection\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-18T14:23:01.788Z",
            "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
            "shortName": "GitHub_M"
          },
          "references": [
            {
              "name": "https://github.com/geoserver/geoserver/security/advisories/GHSA-g628-r368-6vh7",
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://github.com/geoserver/geoserver/security/advisories/GHSA-g628-r368-6vh7"
            },
            {
              "name": "https://github.com/geoserver/geoserver/releases/tag/2.27.0",
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://github.com/geoserver/geoserver/releases/tag/2.27.0"
            },
            {
              "name": "https://nvd.nist.gov/vuln/detail/cve-2023-27867",
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://nvd.nist.gov/vuln/detail/cve-2023-27867"
            },
            {
              "name": "https://osgeo-org.atlassian.net/browse/GEOT-7725",
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://osgeo-org.atlassian.net/browse/GEOT-7725"
            }
          ],
          "source": {
            "advisory": "GHSA-g628-r368-6vh7",
            "discovery": "UNKNOWN"
          },
          "title": "GeoServer DB2 DataStore Extension has a JNDI Vulnerability via Store Connection"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "assignerShortName": "GitHub_M",
        "cveId": "CVE-2025-27511",
        "datePublished": "2026-06-18T14:23:01.788Z",
        "dateReserved": "2025-02-26T18:11:52.306Z",
        "dateUpdated": "2026-06-24T03:56:02.624Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-27511 (GCVE-0-2025-27511)

    Vulnerability from cvelistv5 – Published: 2026-06-18 14:23 – Updated: 2026-06-24 03:56
    VLAI
    Title
    GeoServer DB2 DataStore Extension has a JNDI Vulnerability via Store Connection
    Summary
    GeoServer is an open source server that allows users to share and edit geospatial data. Prior to version 2.27.0 of the GeoServer DB2 DataStore Extension, an administrator can perform a JNDI attack through specially crafted DB2 jdbc url leading to to Remote Code Execution (RCE). Version 2.27.0 fixes the issue.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-502 - Deserialization of Untrusted Data
    • CWE-74 - Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')
    Assigner
    Impacted products
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-27511",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-23T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-24T03:56:02.624Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "org.geoserver.extension:gs-db2",
              "vendor": "geoserver",
              "versions": [
                {
                  "status": "affected",
                  "version": "\u003c 2.27.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "GeoServer is an open source server that allows users to share and edit geospatial data. Prior to version 2.27.0 of the GeoServer DB2 DataStore Extension, an administrator can perform a JNDI attack through specially crafted DB2 jdbc url leading to to Remote Code Execution (RCE). Version 2.27.0 fixes the issue."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.2,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-502",
                  "description": "CWE-502: Deserialization of Untrusted Data",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-74",
                  "description": "CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component (\u0027Injection\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-18T14:23:01.788Z",
            "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
            "shortName": "GitHub_M"
          },
          "references": [
            {
              "name": "https://github.com/geoserver/geoserver/security/advisories/GHSA-g628-r368-6vh7",
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://github.com/geoserver/geoserver/security/advisories/GHSA-g628-r368-6vh7"
            },
            {
              "name": "https://github.com/geoserver/geoserver/releases/tag/2.27.0",
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://github.com/geoserver/geoserver/releases/tag/2.27.0"
            },
            {
              "name": "https://nvd.nist.gov/vuln/detail/cve-2023-27867",
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://nvd.nist.gov/vuln/detail/cve-2023-27867"
            },
            {
              "name": "https://osgeo-org.atlassian.net/browse/GEOT-7725",
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://osgeo-org.atlassian.net/browse/GEOT-7725"
            }
          ],
          "source": {
            "advisory": "GHSA-g628-r368-6vh7",
            "discovery": "UNKNOWN"
          },
          "title": "GeoServer DB2 DataStore Extension has a JNDI Vulnerability via Store Connection"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "assignerShortName": "GitHub_M",
        "cveId": "CVE-2025-27511",
        "datePublished": "2026-06-18T14:23:01.788Z",
        "dateReserved": "2025-02-26T18:11:52.306Z",
        "dateUpdated": "2026-06-24T03:56:02.624Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }