In some non-default installations of Esri Portal for ArcGIS versions 10.9.1 and below, a directory traversal issue may allow a remote, unauthenticated attacker to traverse the file system and lead to the disclosure of sensitive data (not customer-published content).
CPE | Name | Operator | Version |
---|---|---|---|
portal_for_arcgis | le | 10.9.1 |