Geoserver
by Osgeo
Review your setup
Geoserver has some exploitation signals but is generally manageable with regular updates.
What to do
- Keep this software updated
- Review your configuration for unnecessary exposure
- Check for known-vulnerable components or plugins
What Attackers Target
Vulnerabilities with high exploit probability
38.5%
Confirmed actively exploited (CISA)
0.0%
Public exploit code available
0.0%
Based on 13 known vulnerabilities. Percentages show the proportion that are actively dangerous — a low percentage means most vulnerabilities in this product are not being exploited.
Most Dangerous Vulnerabilities
| CVE | CVSS | Exploit Probability | Confirmed |
|---|---|---|---|
| CVE-2023-25157 | 9.8 | 94.0% | — |
| CVE-2021-40822 | 7.5 | 93.3% | — |
| CVE-2023-43795 | 8.6 | 89.5% | — |
| CVE-2025-30220 | 9.9 | 13.9% | — |
| CVE-2024-29198 | 7.5 | 10.4% | — |
| CVE-2025-27505 | 5.3 | 0.9% | — |
| CVE-2024-38524 | 5.3 | 0.7% | — |
| CVE-2024-34711 | 9.3 | 0.4% | — |
| CVE-2022-24847 | 7.2 | 0.3% | — |
| CVE-2024-40625 | 5.5 | 0.2% | — |
| CVE-2023-41339 | 8.6 | 0.2% | — |
| CVE-2024-35230 | 5.3 | 0.2% | — |
| CVE-2025-30145 | 7.5 | 0.1% | — |
35
/ 100
moderate-risk
Active Threat
35/50 · High
Exploit Availability
0/50 · Minimal
Score uses Wilson score intervals to account for sample size. Products with few CVEs are scored conservatively.