Goal Reached Thanks to every supporter β€” we hit 100%!

Goal: 1000 CNY Β· Raised: 1000 CNY

100.0%
Buy Us a Coffee

opengeos β€” Vulnerabilities & Security Advisories 9

Browse all 9 CVE security advisories affecting opengeos. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Opengeos develops geospatial software solutions for mapping and spatial data analysis, with its products commonly used in environmental monitoring and urban planning. Historically, the project has been vulnerable to multiple remote code execution flaws, cross-site scripting vulnerabilities, and privilege escalation issues, accounting for its nine recorded CVEs. These weaknesses often stem from improper input validation and insecure default configurations. While no major public security incidents have been documented, the consistent pattern of vulnerabilities suggests potential risks for organizations deploying Opengeos solutions in production environments, particularly those handling sensitive geographic data.

Top products by opengeos: streamlit-geospatial
CVE IDTitleCVSSSeverityPublished
CVE-2024-41120 streamlit-geospatial blind SSRF in pages/9_πŸ”²_Vector_Data_Visualization.py β€” streamlit-geospatialCWE-20 9.8 Critical2024-07-26
CVE-2024-41119 streamlit-geospatial remote code execution in pages/8_🏜️_Raster_Data_Visualization.py β€” streamlit-geospatialCWE-20 9.8 Critical2024-07-26
CVE-2024-41118 streamlit-geospatial blind SSRF in pages/7_πŸ“¦_Web_Map_Service.py β€” streamlit-geospatialCWE-918 7.5 High2024-07-26
CVE-2024-41117 Remote code execution in streamlit geospatial in pages/10_🌍_Earth_Engine_Datasets.py β€” streamlit-geospatialCWE-20 9.8 Critical2024-07-26
CVE-2024-41116 Remote code execution in streamlit geospatial in pages/1_πŸ“·_Timelapse.py MODIS Ocean Color SMI option vis_params β€” streamlit-geospatialCWE-20 9.8 Critical2024-07-26
CVE-2024-41115 Remote code execution in streamlit geospatial in pages/1_πŸ“·_Timelapse.py MODIS Ocean Color SMI option palette β€” streamlit-geospatialCWE-20 9.8 Critical2024-07-26
CVE-2024-41114 Remote code execution in streamlit geospatial in pages/1_πŸ“·_Timelapse.py MODIS Gap filled Land Surface Temperature Daily option β€” streamlit-geospatialCWE-20 9.8 Critical2024-07-26
CVE-2024-41113 Remote code execution in streamlit geospatial in pages/1_πŸ“·_Timelapse.py Any Earth Engine ImageCollection option vis_params β€” streamlit-geospatialCWE-20 9.8 Critical2024-07-26
CVE-2024-41112 Remote code execution in streamlit geospatial in pages/1_πŸ“·_Timelapse.py Any Earth Engine ImageCollection option palette β€” streamlit-geospatialCWE-20 9.8 Critical2024-07-26

This page lists every published CVE security advisory associated with opengeos. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.