4 matches found
CVE-2025-67707
ArcGIS Server version 11.5 and earlier on Windows and Linux does not properly validate uploaded files file, which allows remote attackers to upload arbitrary files...
CVE-2025-67707
creationtimestamp| type| source ---|---|--- 2026-01-01 00:45:07+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mbd5nqij342c 2026-01-02 08:01:09+00:00| seen| https://gist.github.com/Darkcrai86/ecd52fc8655068ea4fefa80e91a7a2b4...
CVE-2025-67707 Unvalidated File Upload vulnerability in ArcGIS Server.
ArcGIS Server versions 11.5 and earlier on Windows and Linux do not sufficiently validate uploaded files, enabling a remote unauthenticated attacker to upload arbitrary files to the server’s designated upload directories. However, the server’s architecture enforces controls that restrict uploaded...
CVE-2025-67707
ArcGIS Server versions 11.5 and earlier on Windows and Linux are affected by an input validation issue: uploaded files are not properly validated, allowing remote unauthenticated attackers to upload arbitrary files to designated upload directories. The server architecture restricts uploaded files...