Known Vulnerabilities for Arcgis Enterprise by Esri
Listed below are 3 of the newest known vulnerabilities associated with "Arcgis Enterprise" by "Esri".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-29115 json | An information disclosure vulnerability in the ArcGIS Service Directory in Esri ArcGIS Enterprise versions 10.9.0 and below m... | 5.3 - MEDIUM | 2021-12-07 | 2023-11-07 |
| CVE-2021-3012 json | A cross-site scripting (XSS) vulnerability in the Document Link of documents in ESRI Enterprise before 10.9 allows remote aut... | 5.4 - MEDIUM | 2021-04-08 | 2021-05-26 |
| CVE-2019-16193 json | In ArcGIS Enterprise 10.6.1, a crafted IFRAME element can be used to trigger a Cross Frame Scripting (XFS) attack through the... | 5.4 - MEDIUM | 2019-09-11 | 2019-09-12 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Esri | Arcgis Enterprise | 10.6.1 |