Lucene search

CVE-2022-38204

🗓️ 30 Dec 2022 05:00:13Reported by EsriType

Reflected XSS vuln in Esri Portal for ArcGIS 10.8.1, 10.7.1. Execute arbitrary JavaScript

Reporter	Title	Published	Views	Family All 3
Cvelist	CVE-2022-38204 Reflected XSS vulnerability in Portal for ArcGIS (10.8.1 and 10.7.1 only)	30 Dec 202205:13	–	cvelist
Prion	Cross site scripting	29 Dec 202220:15	–	prion
NVD	CVE-2022-38204	29 Dec 202220:15	–	nvd

Nvd

Node

esri portal_for_arcgisMatch10.7.1

esri portal_for_arcgisMatch10.8.1

[
  {
    "vendor": "Esri",
    "product": "ArcGIS Enterprise",
    "versions": [
      {
        "version": "Portal for ArcGIS 10.7.1 and 10.8.1",
        "status": "affected"
      }
    ],
    "platforms": [
      "x64"
    ]
  }
]

Source	Link
esri	www.esri.com/arcgis-blog/products/trust-arcgis/administration/portal-for-arcgis-security-2022-update-2-patch-is-now-available

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

30 Dec 2022 05:13Current

6.3Medium risk

Vulners AI Score6.3

CVSS36.1

EPSS0.00136

CWE-79