Lucene search

CVE-2022-38205

🗓️ 30 Dec 2022 05:00:13Reported by EsriType

Insecure directory traversal in Esri Portal for ArcGIS 10.9.1 and belo

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 4
NVD	CVE-2022-38205	29 Dec 202220:15	–	nvd
Prion	Directory traversal	29 Dec 202220:15	–	prion
Vulnrichment	CVE-2022-38205 Portal for ArcGIS has a directory traversal vulnerability (10.9.1, 10.8.1 and 10.7.1 only)	30 Dec 202205:13	–	vulnrichment
Cvelist	CVE-2022-38205 Portal for ArcGIS has a directory traversal vulnerability (10.9.1, 10.8.1 and 10.7.1 only)	30 Dec 202205:13	–	cvelist

Nvd

Node

esri portal_for_arcgisRange≤10.9.1

[
  {
    "vendor": "Esri",
    "product": "ArcGIS Enterprise",
    "versions": [
      {
        "version": "Portal for ArcGIS",
        "status": "affected",
        "lessThanOrEqual": "10.9.1",
        "versionType": "custom"
      }
    ],
    "platforms": [
      "x64"
    ]
  }
]

Source	Link
esri	www.esri.com/arcgis-blog/products/trust-arcgis/administration/portal-for-arcgis-security-2022-update-2-patch-is-now-available

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

30 Dec 2022 05:13Current

7.7High risk

Vulners AI Score7.7

CVSS37.5 - 8.6

EPSS0.00625

SSVC