{ads}

CISA Flags Actively Exploited GeoServer XXE Flaw in Updated KEV Catalog

Written By Thursday, 11 December 2025 Add Comment



December 12, 2025 at 10:31AM

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a high-severity security flaw impacting OSGeo GeoServer to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation in the wild. The vulnerability in question is CVE-2025-58360 (CVSS score: 8.2), an unauthenticated XML External Entity (XXE) flaw that affects all versions prior to

from The Hacker News https://ift.tt/EVnxrCX

0 Response to "CISA Flags Actively Exploited GeoServer XXE Flaw in Updated KEV Catalog"

Post a Comment

Subscribe to: Post Comments (Atom)

Article Top Ads

Central Ads Article 1

Middle Ads Article 2

Article Bottom Ads