Update 20240924002

Reformatted affected version list to correct format.
Added applicable GeoTools information and CVE.
Added GeoServer advisory hyperlink.

docs/advisories/20240924002-GeoServer-Critical-Vulnerability.md

@@ -6,9 +6,10 @@ The WA SOC has been made aware of vulnerability in GeoServer that allows Remote
 
 ## What is vulnerable?
 
-| Product(s) Affected | Version(s)                                                                                                            | CVE #                                                             | CVSS v4/v3 | Severity |
-| ------------------- | --------------------------------------------------------------------------------------------------------------------- | ----------------------------------------------------------------- | ---------- | -------- |
-| Geoserver           | geoserver versions \< 2.23.6 <br>geoserver versions >= 2.24.0, \< 2.24.4  <br>geoserver versions >= 2.25.0, \< 2.25.2 | [CVE-2024-36401](https://nvd.nist.gov/vuln/detail/CVE-2024-36401) | 9.8        | Critical |
+| Product(s) Affected | Version(s) | CVE # | CVSS v4/v3 | Severity |
+| --- | ---- | --- | --- | -- |
+| Geoserver | all versions < 2.23.6 <br> 2.24.0 < 2.24.4 <br> 2.25.0 < 2.25.2 | [CVE-2024-36401](https://nvd.nist.gov/vuln/detail/CVE-2024-36401) | 9.8 | Critical |
+| GeoTools | all versions < 29.6 <br> 30.0 < 30.4 <br> 31.0 < 31.2 | [CVE-2024-36404](https://nvd.nist.gov/vuln/detail/CVE-2024-36404) | 9.8 | Critical |
 
 ## What has been observed?
 
@@ -18,6 +19,8 @@ There is no evidence of exploitation affecting Western Australian Government net
 
 The WA SOC recommends administrators apply the solutions as per vendor instructions to all affected devices within expected timeframe of *48 hours...* (refer [Patch Management](../guidelines/patch-management.md)):
 
+- GeoServer advisory: <https://geoserver.org/vulnerability/2024/09/12/cve-2024-36401.html>
+
 ## Additional References
 
 - The Hacker News: <https://thehackernews.com/2024/09/chinese-hackers-exploit-geoserver-flaw.html>