CVE-2024-29198

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2024-29198
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-29198.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2024-29198
Aliases
Published
2025-06-10T14:27:39.485Z
Modified
2026-04-10T05:11:49.488664Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
Summary
GeoServer Vulnerable to Unauthenticated SSRF via TestWfsPost
Details

GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. It possible to achieve Service Side Request Forgery (SSRF) via the Demo request endpoint if Proxy Base URL has not been set. Upgrading to GeoServer 2.24.4, or 2.25.2, removes the TestWfsPost servlet resolving this issue.

Database specific 
{
    "cwe_ids": [
        "CWE-918"
    ],
    "cna_assigner": "GitHub_M",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/29xxx/CVE-2024-29198.json"
}
References

Affected packages

Git / github.com/geoserver/geoserver

Affected ranges

Type
GIT
Repo
https://github.com/geoserver/geoserver
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
f46dbf7ec3e6e66f7ccacf1d612080609743a043
Database specific 
{
    "versions": [
        {
            "introduced": "2.0.0"
        },
        {
            "fixed": "2.24.4"
        }
    ]
}
Type
GIT
Repo
https://github.com/geoserver/geoserver
Events
Introduced
55dc8c632219161aa0a1d115ec93e6d700e3b97a
Fixed
c7fb0f78d949d85dce6296ed2a075d394b31571b
Database specific 
{
    "versions": [
        {
            "introduced": "2.25.0"
        },
        {
            "fixed": "2.25.2"
        }
    ]
}

Affected versions

2.*
2.11-beta
2.21-M0

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-29198.json"