Security News CISA orders feds to patch actively exploited Geoserver flaw BleepingComputer Daniel Bender 12 Dec 2025 CISA has ordered U.S. federal agencies to patch a critical GeoServer vulnerability now actively exploited in XML External Entity (XXE) injection attacks.
