VYPR
Unrated severityNVD Advisory· Published Oct 25, 2022· Updated Apr 10, 2025

BUG-000144172 - Remote file download issue in ArcGIS Server

CVE-2022-38199

Description

A remote file download issue can occur in some capabilities of Esri ArcGIS Server web services that may in some edge cases allow a remote, unauthenticated attacker to induce an unsuspecting victim to launch a process in the victim's PATH environment. Current browsers provide users with warnings against running unsigned executables downloaded from the internet.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.