esri

168 tracked vulnerabilities.

CVE-2022-38209 MEDIUM
Esri Portal for ArcGIS <10.9.1 - XSS
Dec 29, 2022
CVSS 6.1
EPSS 0.00
CVE-2022-38208 MEDIUM
Esri Portal for ArcGIS <11 - Open Redirect
Dec 29, 2022
CVSS 6.1
EPSS 0.00
CVE-2022-38207 MEDIUM
Esri Portal for ArcGIS <10.8.1-10.7.1 - XSS
Dec 29, 2022
CVSS 6.1
EPSS 0.00
CVE-2022-38206 MEDIUM
Esri Portal for ArcGIS <10.9.1 - XSS
Dec 29, 2022
CVSS 6.1
EPSS 0.00
CVE-2022-38205 HIGH
Esri Portal for ArcGIS <10.9.1 - Path Traversal
Dec 29, 2022
CVSS 8.6
EPSS 0.02
CVE-2022-38204 MEDIUM
Esri Portal for ArcGIS <10.8.1-10.7.1 - XSS
Dec 29, 2022
CVSS 6.1
EPSS 0.00
CVE-2022-38203 HIGH
Esri Portal for ArcGIS <10.8.1 - SSRF
Dec 29, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-38202 HIGH
Esri ArcGIS Server <10.9.1 - Path Traversal
Dec 28, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-38201 MEDIUM
Esri Portal for ArcGIS Quick Capture Web Designer <10.9.1 - Open Re...
Nov 15, 2022
CVSS 6.1
EPSS 0.00
CVE-2022-38200 MEDIUM
ArcGIS Server 10.7.1 and 10.8.1 - Cross-Site Scripting in Map Service Configuration
Oct 25, 2022
CVSS 6.1
EPSS 0.00
CVE-2022-38199 MEDIUM
Esri ArcGIS Server - Remote File Download
Oct 25, 2022
CVSS 6.1
EPSS 0.00
CVE-2022-38198 MEDIUM
Esri ArcGIS Server < 10.9.1 - Unauthenticated Reflected Cross-Site Scripting
Oct 25, 2022
CVSS 6.1
EPSS 0.01
CVE-2022-38197 MEDIUM
Esri ArcGIS Server <10.9.1 - Open Redirect
Oct 25, 2022
CVSS 6.1
EPSS 0.01
CVE-2022-38196 MEDIUM
Esri ArcGIS Server <10.9.1 - Path Traversal
Oct 25, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-38195 MEDIUM
Esri ArcGIS Server < 10.9.1 - Reflected Cross-Site Scripting
Oct 25, 2022
CVSS 6.1
EPSS 0.00
CVE-2022-38189 MEDIUM
Esri Portal for ArcGIS - Authenticated Stored Cross-Site Scripting via Crafted Queries
Aug 16, 2022
CVSS 5.4
EPSS 0.00
CVE-2022-38184 HIGH
Portal for ArcGIS <10.8.1 - Info Disclosure
Aug 16, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-38194 MEDIUM
Esri Portal for ArcGIS <10.8.1 - Info Disclosure
Aug 16, 2022
CVSS 6.7
EPSS 0.00
CVE-2022-38193 MEDIUM
Esri Portal for ArcGIS <10.8.1 - Code Injection
Aug 16, 2022
CVSS 6.1
EPSS 0.01
CVE-2022-38192 MEDIUM
Esri Portal for ArcGIS < 10.8.1 - Authenticated Stored Cross-Site Scripting via Crafted Queries
Aug 16, 2022
CVSS 6.1
EPSS 0.00
CVE-2022-38191 MEDIUM
Esri Portal for ArcGIS <10.9.0 - Code Injection
Aug 15, 2022
CVSS 6.1
EPSS 0.00
CVE-2022-38190 MEDIUM
Esri Portal for ArcGIS < 10.8.1 - Unauthenticated Stored Cross-Site Scripting via Configurable Apps
Aug 15, 2022
CVSS 6.1
EPSS 0.00
CVE-2022-38188 MEDIUM
Esri Portal for ArcGIS <10.9.1 - XSS
Aug 15, 2022
CVSS 6.1
EPSS 0.00
CVE-2022-38187 HIGH
Esri Portal <10.9.0 - Info Disclosure
Aug 15, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-38186 MEDIUM
Esri Portal for ArcGIS <10.8.1 - XSS
Aug 15, 2022
CVSS 6.1
EPSS 0.00
Products
portal_for_arcgis 73 arcgis_server 67 arcgis_pro 6 arcreader 6 arcgis_enterprise 5 arcmap 4 arcgis_engine 3 ArcGIS Server 2 Portal for ArcGIS 2 arcgis_allsource 2 arcgis_insights 2 arcinfo_workstation 2 arcsde 2 ArcGIS Enterprise Builder 1 ArcGIS Monitor 1 ArcGIS Web AppBuilder {Developer Edition) 1 arcgis_earth 1 arcgis_for_desktop 1 arcgis_for_engine 1 arcgis_geoevent_server 1 arcgis_quickcapture 1 arcgisruntime_sdk 1 arcpad 1
Quick Filters
Critical CVEs With Exploits In CISA KEV