AttackFeed by Joe Wagner | CISA Flags Actively Exploited GeoServer XXE Flaw in Updated KEV Catalog  - The Hacker News

CISA Flags Actively Exploited GeoServer XXE Flaw in Updated KEV Catalog  – The Hacker News

Posted on By [email protected] (The Hacker News) No Comments on CISA Flags Actively Exploited GeoServer XXE Flaw in Updated KEV Catalog  – The Hacker News
Attack Feeds

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a high-severity security flaw impacting OSGeo GeoServer to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation in the wild.
The vulnerability in question is CVE-2025-58360 (CVSS score: 8.2), an unauthenticated XML External Entity (XXE) flaw that affects all versions prior to  –

Read More  – The Hacker News 

You may also like

Attack Feeds
Enterprise Credentials at Risk – Same Old, Same Old?  – The Hacker News
November 7, 2025
Attack Feeds
⚡ Weekly Recap: Chrome 0-Day, AI Hacking Tools, DDR5 Bit-Flips, npm Worm & More  – The Hacker News
September 22, 2025
Attack Feeds
Bipartisan health care cybersecurity legislation returns to address a cornucopia of issues  – CyberScoop
December 5, 2025
Attack Feeds
Google Patches “Gemini Trifecta” Vulnerabilities in Gemini AI Suite  – Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto
October 2, 2025

Leave a Reply

AttackFeed by Joe Wagner
Powered by  GDPR Cookie Compliance
Privacy Overview

This website uses cookies so that we can provide you with the best user experience possible. Cookie information is stored in your browser and performs functions such as recognising you when you return to our website and helping our team to understand which sections of the website you find most interesting and useful.