Lucene search
+L

112 matches found

Cvelist
Cvelist
added 2026/07/07 4:39 p.m.38 views

CVE-2026-13020 Weak Password Recovery Mechanism in Portal for ArcGIS

A Weak Password Recovery Mechanism for Forgotten Password exists in Esri Portal for ArcGIS versions 12.1 and earlier on Windows, Linux and Kubernetes. A remote, unauthorized attacker may assume ownership of a user’s account by manipulating this mechanism. ArcGIS Administrators should configure an...

8.1CVSS0.00234EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/07/07 4:39 p.m.10 views

CVE-2026-13020

A Weak Password Recovery Mechanism for Forgotten Password exists in Esri Portal for ArcGIS versions 12.1 and earlier on Windows, Linux and Kubernetes. A remote, unauthorized attacker may assume ownership of a user’s account by manipulating this mechanism. ArcGIS Administrators should configure an...

8.1CVSS6AI score0.00234EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/09 9:31 a.m.7 views

CVE-2023-25848

ArcGIS Enterprise Server versions 11.0 and below have an information disclosure vulnerability where a remote, unauthorized attacker may submit a crafted query that may result in a low severity information disclosure issue. The information disclosed is limited to a single attribute in a database...

5.3CVSS6AI score0.0024EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2021-15756

Malware in sbrugna...

5.3CVSS5.5AI score0.0215EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-7008

Malware in sbrugna...

5.4CVSS5.6AI score0.00624EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-29736

Malicious code in bioql PyPI...

5.3CVSS5.7AI score0.0024EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-28580

Malicious code in bioql PyPI...

4.8CVSS6.5AI score0.00207EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-28578

Malicious code in bioql PyPI...

4.8CVSS6.6AI score0.00173EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-23016

Malicious code in bioql PyPI...

4.8CVSS6.6AI score0.00373EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-23010

Malicious code in bioql PyPI...

4.8CVSS5.4AI score0.00275EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-23024

Malicious code in bioql PyPI...

4.8CVSS6.6AI score0.00373EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-28579

Malicious code in bioql PyPI...

4.8CVSS6.6AI score0.00207EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-23018

Malicious code in bioql PyPI...

4.8CVSS5.4AI score0.00273EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-28581

Malicious code in bioql PyPI...

4.8CVSS6.5AI score0.00209EPSS
Exploits0References1
CNVD
CNVD
added 2025/08/27 12:0 a.m.4 views

esri Portal for ArcGIS Enterprise Sites Cross-Site Scripting Vulnerability (CNVD-2025-21187)

esri Portal for ArcGIS Enterprise Sites is an enterprise-level geographic information sharing platform from ESRI that allows users within an organization to view, edit, and share geographic information through the portal. A cross-site scripting vulnerability exists in esri Portal for ArcGIS...

4.8CVSS6.4AI score0.00207EPSS
Exploits0References1
CNVD
CNVD
added 2025/08/27 12:0 a.m.4 views

esri Portal for ArcGIS Enterprise Sites Cross-Site Scripting Vulnerability (CNVD-2025-21186)

esri Portal for ArcGIS Enterprise Sites is an enterprise-level geographic information sharing platform from ESRI that allows users within an organization to view, edit, and share geographic information through the portal. A cross-site scripting vulnerability exists in esri Portal for ArcGIS...

4.8CVSS6.9AI score0.00207EPSS
Exploits0References1
CNVD
CNVD
added 2025/08/27 12:0 a.m.3 views

esri Portal for ArcGIS Enterprise Sites Cross-Site Scripting Vulnerability (CNVD-2025-21188)

esri Portal for ArcGIS Enterprise Sites is an enterprise-level geographic information sharing platform from ESRI that allows users within an organization to view, edit, and share geographic information through the portal. A cross-site scripting vulnerability exists in esri Portal for ArcGIS...

4.8CVSS6.4AI score0.00207EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/23 8:13 p.m.5 views

CVE-2025-55105

There is a stored Cross-site Scripting vulnerability in Esri Portal for ArcGIS Enterprise Sites versions 10.9.1 – 11.4 that may allow a remote, authenticated attacker to inject malicious a file with an embedded xss script which when loaded could potentially execute arbitrary JavaScript code in th...

4.8CVSS6.9AI score0.00207EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/23 8:13 p.m.5 views

CVE-2025-55106

There is a stored Cross-site Scripting vulnerability in Esri Portal for ArcGIS Enterprise Sites versions 10.9.1 – 11.4 that may allow a remote, authenticated attacker to inject malicious a file with an embedded xss script which when loaded could potentially execute arbitrary JavaScript code in th...

4.8CVSS6.9AI score0.00207EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/23 8:13 p.m.6 views

CVE-2025-55103

There is a stored Cross-site Scripting vulnerability in Esri Portal for ArcGIS Enterprise Sites versions 10.9.1 – 11.4 that may allow a remote, authenticated attacker to inject malicious a file with an embedded xss script which when loaded could potentially execute arbitrary JavaScript code in th...

4.8CVSS6.9AI score0.00207EPSS
Exploits0References1
Rows per page
Query Builder