TechSecInfo

The tech + cyber briefing: what happened, why it matters, and where it came from.

Cyber Security

CISA Flags Actively Exploited GeoServer XXE Flaw in Updated KEV Catalog

By rooter

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a high-severity security flaw impacting OSGeo GeoServer to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation in the wild.
The vulnerability in question is CVE-2025-58360 (CVSS score: 8.2), an unauthenticated XML External Entity (XXE) flaw that affects all versions prior to

Oh hi there 👋
It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

We don’t spam! Read our privacy policy for more info.

Oh hi there 👋
It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

We don’t spam! Read our privacy policy for more info.

By rooter

Related Post

Cyber Security

How to Recover Lost or Deleted Data on Windows 11?

rooter
Cyber Security

Webinar: How Modern SOC Teams Use AI and Context to Investigate Cloud Breaches Faster

rooter
Cyber Security

My Day Getting My Hands Dirty with an NDR System

rooter

Leave a Reply

You Missed

News

SmartLoader Attack Uses Trojanized Oura MCP Server to Deploy StealC Infostealer

News

Poorly crafted phishing campaign leverages bogus security incident report

News

Peak Design has wearable gadget straps for people who hate bags

News

Fake ‘Olympics Shop’ Ads on Meta Lead Netizens to Cloned Websites Promising 80% Off Merch