Lucene search
K

108 matches found

NVD
NVD
added 5 days ago10 views

CVE-2026-13020

A Weak Password Recovery Mechanism for Forgotten Password exists in Esri Portal for ArcGIS versions 12.1 and earlier on Windows, Linux and Kubernetes. A remote, unauthorized attacker may assume ownership of a user’s account by manipulating this mechanism. ArcGIS Administrators should configure an...

9.8CVSS0.00234EPSS
Exploits0References1
EUVD
EUVD
added 5 days ago5 views

EUVD-2026-42058

Esri Portal for ArcGIS versions 12.1 and earlier on Windows, Linux and Kubernetes have a missing authentication for critical function vulnerability allows a remote, unauthenticated attacker to access an unprotected API...

9.8CVSS6AI score0.0041EPSS
Exploits0References1
Cvelist
Cvelist
added 5 days ago34 views

CVE-2026-13019 Missing Authentication

Esri Portal for ArcGIS versions 12.1 and earlier on Windows, Linux and Kubernetes have a missing authentication for critical function vulnerability allows a remote, unauthenticated attacker to access an unprotected API...

9.8CVSS0.0041EPSS
Exploits0References1
CVE
CVE
added 5 days ago17 views

CVE-2026-13019

Esri Portal for ArcGIS, versions 12.1 and earlier, on Windows/Linux/Kubernetes, has a missing authentication flaw for a critical function, allowing a remote, unauthenticated attacker to access an unprotected API. The CVSSv3.1 vector is AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H with base score 9.8 (CRIT...

9.8CVSS6AI score0.0041EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 5 days ago8 views

CVE-2026-13019

Esri Portal for ArcGIS versions 12.1 and earlier on Windows, Linux and Kubernetes have a missing authentication for critical function vulnerability allows a remote, unauthenticated attacker to access an unprotected API...

9.8CVSS6AI score0.0041EPSS
Exploits0References2
EUVD
EUVD
added 5 days ago7 views

EUVD-2026-42057

A Weak Password Recovery Mechanism for Forgotten Password exists in Esri Portal for ArcGIS versions 12.1 and earlier on Windows, Linux and Kubernetes. A remote, unauthorized attacker may assume ownership of a user’s account by manipulating this mechanism. ArcGIS Administrators should configure an...

8.1CVSS6AI score0.00234EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/04/23 7:22 a.m.5 views

CVE-2026-33518

An incorrect privilege assignment vulnerability exists in Esri Portal for ArcGIS 11.5 in Windows and Linux that allows highly privileged users to create developer credentials that may grant more privileges than expected...

9.8CVSS5.8AI score0.00295EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/21 9:31 p.m.8 views

EUVD-2026-24337

An incorrect privilege assignment vulnerability exists in Esri Portal for ArcGIS 11.5 in Windows and Linux that allows highly privileged users to create developer credentials that may grant more privileges than expected...

9.8CVSS5.8AI score0.00295EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/04/21 8:38 p.m.35 views

CVE-2026-33519 Incorrect privilege assignment in Portal for ArcGIS

An incorrect authorization vulnerability exists in Esri Portal for ArcGIS 11.4, 11.5 and 12.0 on Windows, Linux and Kubernetes that did not correctly check permissions assigned to developer credentials...

9.8CVSS0.00312EPSS
Exploits0References1
CVE
CVE
added 2026/04/21 8:37 p.m.13 views

CVE-2026-33518

Esri Portal for ArcGIS 11.5 (Windows and Linux) is affected by an incorrect privilege assignment vulnerability. The issue lets highly privileged users create developer credentials that may grant more privileges than expected. CVSS 3.1 Base Score 9.8 (CRITICAL) with network attack vector, low atta...

9.8CVSS5.8AI score0.00295EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/04/21 8:37 p.m.38 views

CVE-2026-33518 Incorrect privilege assignment in Portal for ArcGIS

An incorrect privilege assignment vulnerability exists in Esri Portal for ArcGIS 11.5 in Windows and Linux that allows highly privileged users to create developer credentials that may grant more privileges than expected...

9.8CVSS0.00295EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/21 8:37 p.m.4 views

CVE-2026-33518

An incorrect privilege assignment vulnerability exists in Esri Portal for ArcGIS 11.5 in Windows and Linux that allows highly privileged users to create developer credentials that may grant more privileges than expected...

9.8CVSS5.8AI score0.00295EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2026/04/21 12:0 a.m.15 views

Esri Portal For ArcGIS 安全漏洞

Esri Portal for ArcGIS is a component offered by Esri that allows for sharing maps, scenarios, applications, and other geographic information with others within an organization. Versions 11.4, 11.5, and 12.0 of Esri Portal for ArcGIS have security vulnerabilities. These vulnerabilities stem from...

9.8CVSS5.8AI score0.00312EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-31606

Malicious code in bioql PyPI...

4.8CVSS6.6AI score0.00209EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-31607

Malicious code in bioql PyPI...

4.8CVSS6.6AI score0.00209EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-40784

Malicious code in bioql PyPI...

6.1CVSS6.3AI score0.0048EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-40794

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00483EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-31611

Malicious code in bioql PyPI...

4.8CVSS6.6AI score0.00207EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2025-31610

Malicious code in bioql PyPI...

6.1CVSS6.6AI score0.0023EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/09/30 6:41 p.m.9 views

CVE-2025-57878

There is an unvalidated redirect vulnerability in Esri Portal for ArcGIS 11.4 and below that may allow a remote, unauthenticated attacker to craft a URL that could redirect a victim to an arbitrary website, simplifying phishing attacks...

6.1CVSS7AI score0.0023EPSS
Exploits0References1
Rows per page
Query Builder