esri Latest High & Critical Vulnerabilities
Latest High & Critical vulnerabilities published by esri
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Password Recovery Exploitation in ArcGIS Enterprise by Esri
CVE-2025-2538EsriPortal For Arcgis9.8CRITICALSQL Injection Vulnerability in ArcGIS Server by Esri
CVE-2024-51962EsriArcgis Server8.7HIGHLocal File Inclusion Vulnerability in ArcGIS Server by Esri
CVE-2024-51961EsriArcgis Server7.5HIGHImproper Access Control in ArcGIS Server by Esri
CVE-2024-51954EsriArcgis Server7.1HIGHUntrusted Search Path Vulnerability in Esri ArcGIS AllSource Software
CVE-2025-1068EsriArcgis Allsource7.3HIGHUntrusted Search Path Vulnerability in Esri ArcGIS Pro Software
CVE-2025-1067EsriArcgis Pro7.3HIGHLocal File Inclusion Vulnerability in Esri Portal for ArcGIS 11.2, 11.1, 11.0, and 10.9.1
CVE-2024-38040EsriPortal For Arcgis7.5HIGHPath Traversal Vulnerability in ArcGIS <= 11.2
CVE-2024-25693EsriPortal For ArcgisπΎπ‘EPSS 10%9.9CRITICALDifficult to Exploit Authentication Issue Affects ArcGIS Software
CVE-2024-25699EsriPortal For Arcgis8.1HIGHCross-site Scripting Vulnerability in Portal for ArcGIS
CVE-2024-25695EsriPortal For Arcgis7.2HIGHBUG-000157278 β ArcGIS Insights has a security vulnerability.
CVE-2023-25838EsriArcgis Insights7.5HIGHBUG-000157278 β ArcGIS Insights has a security vulnerability - desktop
CVE-2023-25839EsriArcgis Insights7HIGHCross-Site Request Forgery Vulnerability in Esri Portal for ArcGIS
CVE-2023-25832EsriPortal For Arcgis8.8HIGHThe allowedProxyHosts property is not fully honored in ArcGIS Enterprise (10.8.1 and 10.7.1 only)
CVE-2022-38203EsriPortal For Arcgis7.5HIGHPortal for ArcGIS has a directory traversal vulnerability (10.9.1, 10.8.1 and 10.7.1 only)
CVE-2022-38205EsriArcgis Enterprise8.6HIGHServer Side Request Forgery (SSRF) vulnerability in Portal for ArcGIS (10.9.1, 10.8.1 and 10.7.1 only)
CVE-2022-38211EsriArcgis Enterprise7.5HIGHServer Side Request Forgery (SSRF) vulnerability in Portal for ArcGIS (10.8.1 and 10.7.1 only)
CVE-2022-38212EsriArcgis Enterprise7.5HIGHBUG-000152121 - Directory traversal vulnerability in ArcGIS Server.
CVE-2022-38202EsriArcgis Server7.5HIGHThere is an improper access control vulnerability in Portal for ArcGIS versions 10.8.1
CVE-2022-38184EsriPortal For Arcgis7.5HIGHPrevent access to sharing/rest/content/features/analyze to unauthorized users
CVE-2022-38187EsriPortal For Arcgis7.5HIGHReflected XSS Vulnerability in Esri Portal for ArcGIS
CVE-2022-38186EsriPortal For Arcgis7.1HIGHReflected XSS Vulnerability in Esri Portal for ArcGIS
CVE-2022-38188EsriPortal For Arcgis7.1HIGHarcreader use-after-free
CVE-2021-29117EsriArcreader7.8HIGHSQL injection vulnerability in ArcGIS Server
CVE-2021-29114EsriArcgis Server7.3HIGHThere is an privilege escalation vulnerability in organization-specific logins in Esri Portal for ArcGIS versions 10.9 and below.
CVE-2021-29108EsriPortal For Arcgis8.8HIGH