Unrated severityNVD Advisory· Published Oct 25, 2022· Updated Apr 10, 2025
BUG-000144172 - Remote file download issue in ArcGIS Server
CVE-2022-38199
Description
A remote file download issue can occur in some capabilities of Esri ArcGIS Server web services that may in some edge cases allow a remote, unauthenticated attacker to induce an unsuspecting victim to launch a process in the victim's PATH environment. Current browsers provide users with warnings against running unsigned executables downloaded from the internet.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: All
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.