VYPR
Unrated severityNVD Advisory· Published Aug 16, 2022· Updated Apr 10, 2025

There is an improper access control vulnerability in Portal for ArcGIS versions 10.8.1

CVE-2022-38184

Description

There is an improper access control vulnerability in Portal for ArcGIS versions 10.8.1 and below which could allow a remote, unauthenticated attacker to access an API that may induce Esri Portal for ArcGIS to read arbitrary URLs.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.