Back to KEVs

CVE-2023-35042

GeoServer 2, in some configurations, allows remote attackers to execute arbitrary code via java.lang.Runtime.getRuntime().exec in wps:LiteralData...

Basic Information

CVE State
PUBLISHED
Reserved Date
June 12, 2023
Published Date
June 12, 2023
Last Updated
November 27, 2024
Vendor
n/a
Product
n/a
Description
GeoServer 2, in some configurations, allows remote attackers to execute arbitrary code via java.lang.Runtime.getRuntime().exec in wps:LiteralData within a wps:Execute request, as exploited in the wild in June 2023. NOTE: the vendor states that they are unable to reproduce this in any version.

CVSS Scores

CVSS v3.1

9.8 - CRITICAL

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

SSVC Information

Exploitation
none
Automatable
Yes
Technical Impact
total

Exploit Status

Exploited in the Wild
Yes (2023-06-12 00:00:00 UTC) Source

References

https://isc.sans.edu/diary/29936 https://docs.geoserver.org/stable/en/user/services/wps/operations.html#execute

Known Exploited Vulnerability Information

Source Added Date
CVE 2023-06-12 00:00:00 UTC

Timeline

  • CVE ID Reserved

  • CVE Published to Public

  • Added to KEVIntel