Vulnerabilidades em Esri
150 resultadosCVE-2021-29104MEDIUMThere is a stored Cross Site Scripting (XXS) vulnerability in ArcGIS Server Manager version 10.8.1 and below.EPSS 0.8%CVE-2021-29108HIGHThere is an privilege escalation vulnerability in organization-specific logins in Esri Portal for ArcGIS versions 10.9 and below.EPSS 0.8%CVE-2021-29116MEDIUMBUG-000142180 Hosted feature services vulnerable to stored XSSEPSS 0.8%CVE-2021-29103MEDIUMThere is a reflected Cross Site Scripting (XSS) vulnerability in Esri ArcGIS Server version 10.8.1 and below.EPSS 0.7%CVE-2022-38193MEDIUMCode injection issue in Portal for ArcGIS (10.7.1 and 10.8.1)EPSS 0.7%CVE-2022-38212HIGHServer Side Request Forgery (SSRF) vulnerability in Portal for ArcGIS (10.8.1 and 10.7.1 only)EPSS 0.7%CVE-2022-38203HIGHThe allowedProxyHosts property is not fully honored in ArcGIS Enterprise (10.8.1 and 10.7.1 only)EPSS 0.7%CVE-2021-29109MEDIUMA reflected XSS vulnerability in Esri Portal for ArcGIS version 10.9.EPSS 0.7%CVE-2024-25699HIGHPortal for ArcGIS has an invalid authentication vulnerabilityEPSS 0.7%CVE-2021-29106MEDIUMThere is a reflected Cross Site Scripting (XSS) vulnerability in Esri ArcGIS Server version 10.8.1 and below.EPSS 0.7%CVE-2023-25835HIGHBUG-000153659 ArcGIS Enterprise Sites has a stored XSS vulnerabilityEPSS 0.7%CVE-2021-29110MEDIUMStored cross-site scripting (XSS) issue in Esri Portal for ArcGIS may allow a remote unauthenticated attacker to pass and store malicious strings in the home application.EPSS 0.6%CVE-2021-29099MEDIUMThere is a SQL injection vulnerability in ArcGIS ServerEPSS 0.6%CVE-2021-29105MEDIUMThere is a stored Cross Site Scripting (XSS) vulnerability in Esri ArcGIS Server Services Directory version 10.8.1 and below.EPSS 0.6%CVE-2022-38187HIGHPrevent access to sharing/rest/content/features/analyze to unauthorized usersEPSS 0.6%CVE-2024-38036MEDIUMBUG-000154827 - Reflected XSS in ArcGIS Experience BuilderEPSS 0.6%CVE-2024-51958MEDIUMDirectory traversal vulnerability in the admin api for service thumbnailsEPSS 0.6%CVE-2024-51966MEDIUMDirectory traversal vulnerability in ArcGIS ServerEPSS 0.6%CVE-2023-25831MEDIUMBUG-000154236 There is a reflected cross-site scripting (XSS) vulnerability in Portal for ArcGIS.EPSS 0.5%CVE-2025-2538CRITICALBUG-000174336EPSS 0.5%