risk 80/100 · critical exploited in the wild

Maven · org.geoserver:gs-wfs

4 known advisories.

Risk score: 80/100

Transparent, additive — every input shown:

Worst severity: +40
Worst CVSS: +0
Exploited in the wild: +25
Exploit probability (EPSS): +15

Advisories

CVE-2024-36401 — critical · exploited
GHSA-68cf-j696-wvv9 — high
CVE-2025-30220 — high
CVE-2024-29198 — high

Stateward checks every dependency on every pull request and flags org.geoserver:gs-wfs only if your code actually reaches the vulnerable path.

Scan my repo

Sources: CISA KEV (public domain), OSV.dev & GitHub Advisory Database (CC-BY-4.0), FIRST EPSS, NVD/CWE (public domain). Served live from the Stateward advisory database.