Esri Arcgis Enterprise

Stored XSS in Esri Portal for ArcGIS Web App Builder <=10.9.1 (High Priv)
CVE-2024-25708 4.8 - Medium - April 04, 2024

There is a stored Cross-site Scripting vulnerability in Esri Portal for ArcGIS Enterprise Web App Builder versions 10.9.1 and below that may allow a remote, authenticated attacker to create a crafted link which when clicked could potentially execute arbitrary JavaScript code in the victims browser. The privileges required to execute this attack are high.

Improper Auth Esri Portal ArcGIS <=11.2 Home App RUA Vulnerability
CVE-2024-25699 8.5 - High - April 04, 2024

There is a difficulttoexploit improper authentication issue in the Home application for Esri Portal for ArcGIS versions 11.2 and below on Windows and Linux, and ArcGIS Enterprise versions 11.1 and below on Kubernetes, which under unique circumstances could allow a remote, authenticated attacker with lowprivileged access to compromise the confidentiality, integrity, and availability of the software. Successful exploitation allows the attacker to cross an authentication and authorization boundary beyond their originally assigned access, resulting in a scope change.

authentification

ArcGIS Enterprise 11.0 Remote Info Disclosure via Malformed Query
CVE-2023-25848 5.3 - Medium - August 25, 2023

ArcGIS Enterprise Server versions 11.0 and below have an information disclosure vulnerability where a remote, unauthorized attacker may submit a crafted query that may result in a low severity information disclosure issue. The information disclosed is limited to a single attribute in a database connection string. No business data is disclosed.

Cleartext Transmission of Sensitive Information

Esri ArcGIS Enterprise Sites XSS (v<10.9) via Authenticated Crafted Link
CVE-2023-25837 8.4 - High - July 21, 2023

There is a CrossSite Scripting (XSS) vulnerability in Esri ArcGIS Enterprise Sites versions 10.9 and below that may allow a remote, authenticated attacker to create a crafted link which, when clicked by a victim, could result in the execution of arbitrary JavaScript code in the targets browser. Exploitation requires highprivileged authenticated access. Successful exploitation may allow the attacker to access sensitive session data, manipulate trusted content, and disrupt normal application functionality, resulting in a high impact to confidentiality, integrity, and availability.

XSS

An information disclosure vulnerability in the ArcGIS Service Directory in Esri ArcGIS Enterprise versions 10.9.0 and below may
CVE-2021-29115 5.3 - Medium - December 07, 2021

An information disclosure vulnerability in the ArcGIS Service Directory in Esri ArcGIS Enterprise versions 10.9.0 and below may allows a remote attacker to view hidden field names in feature layers. This issue may reveal field names, but not not disclose features.

Exposure of Resource to Wrong Sphere

A cross-site scripting (XSS) vulnerability in the Document Link of documents in ESRI Enterprise before 10.9
CVE-2021-3012 5.4 - Medium - April 08, 2021

A cross-site scripting (XSS) vulnerability in the Document Link of documents in ESRI Enterprise before 10.9 allows remote authenticated users to inject arbitrary JavaScript code via a malicious HTML attribute such as onerror (in the URL field of the Parameters tab).

XSS

In ArcGIS Enterprise 10.6.1, a crafted IFRAME element
CVE-2019-16193 5.4 - Medium - September 11, 2019

In ArcGIS Enterprise 10.6.1, a crafted IFRAME element can be used to trigger a Cross Frame Scripting (XFS) attack through the EDIT MY PROFILE feature.

XSS