Unrated severityNVD Advisory· Published Dec 7, 2021· Updated Apr 10, 2025
An information disclosure vulnerability
CVE-2021-29115
Description
An information disclosure vulnerability in the ArcGIS Service Directory in Esri ArcGIS Enterprise versions 10.9.0 and below may allows a remote attacker to view hidden field names in feature layers. This issue may reveal field names, but not not disclose features.
Affected products
2- Range: <=10.9.0
- Range: All
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.