Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2024/10/09 12:0 a.m.27 views

Esri Portal for ArcGIS < Security 2024 Update 2 Multiple Vulnerabilities

The version of Esri Portal for ArcGIS installed is missing Security 2024 Update 2. It is, therefore, affected by multiple vulnerabilities including: - There is a local file inclusion vulnerability in Esri Portal for ArcGIS 11.2. 11.1, 11.0 and 10.9.1 that may allow a remote, unauthenticated...

7.5CVSS6.5AI score0.00584EPSS
Exploits0References14
Circl
Circl
added 2024/10/04 9:3 p.m.7 views

CVE-2024-25691

creationtimestamp| type| source ---|---|--- 2024-10-04 21:03:28+00:00| seen| https://t.me/cvedetector/7014...

6.1CVSS4.8AI score0.00311EPSS
Exploits0References1
NVD
NVD
added 2024/10/04 6:15 p.m.26 views

CVE-2024-25691

There is a reflected XSS vulnerability in Esri Portal for ArcGIS versions 11.1 and below which may allow a remote, unauthenticated attacker to create a crafted link which when clicked could potentially execute arbitrary JavaScript code in the victim’s browser...

6.1CVSS0.00311EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/04 5:18 p.m.16 views

CVE-2024-25691 BUG-000165286 - Reflected XSS in Portal for ArcGIS

There is a reflected XSS vulnerability in Esri Portal for ArcGIS versions 11.1 and below which may allow a remote, unauthenticated attacker to create a crafted link which when clicked could potentially execute arbitrary JavaScript code in the victim’s browser...

6.1CVSS6.4AI score0.00311EPSS
Exploits0References1
CVE
CVE
added 2024/10/04 5:18 p.m.62 views

CVE-2024-25691

Esri Portal for ArcGIS is affected by a reflected XSS in versions up to 11.1. A crafted link could cause arbitrary JavaScript execution in the victim’s browser. Affected versions include 10.8.1–11.1. Root cause is a cross-site scripting flaw in the portal’s handling of URL/link input. Practical i...

6.1CVSS6.4AI score0.00311EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/10/04 5:18 p.m.37 views

CVE-2024-25691 BUG-000165286 - Reflected XSS in Portal for ArcGIS

There is a reflected XSS vulnerability in Esri Portal for ArcGIS versions 11.1 and below which may allow a remote, unauthenticated attacker to create a crafted link which when clicked could potentially execute arbitrary JavaScript code in the victim’s browser...

6.1CVSS0.00311EPSS
Exploits0References1
Rows per page
Query Builder