GeoServer SSRF Vulnerability in XML ENTITY_RESOLUTION_ALLOWLIST Fix Guide
Security AdvisoryUnknownGeoServer
Affected:
- org.geoserver.web:gs-web-app (Maven) <2.26.3
- org.geoserver.web:gs-web-app (Maven) >=2.27.0 <2.27.2
- org.geoserver.gs-main (Maven) <2.26.3
- org.geoserver.gs-main (Maven) >=2.27.0 <2.27.2
Fixed in:
- 2.26.4
- 2.27.3
Referenced CVEs: CVE-2025-58175 · 6.5
文章内图片已隐藏以节省流量 · Upgrade to Pro to view images & offline archive
This content was auto-fetched from github.com, cleaned by our LLM pipeline, and translated to English. View original.