CVE-2022-24816: OSGeo GeoServer JAI-EXT Code Injection Vulnerability. OSGeo
OSGeo GeoServer JAI-EXT Code Injection Vulnerability. OSGeo GeoServer JAI-EXT contains a code injection vulnerability that, when programs use jt-jiffle and allow Jiffle script to be provided via network request, could allow remote code execution.
- CISA KEV-listed (remediation due 2024-07-17)
- EPSS 94.0% (99.9% percentile)