Lucene search
K

4 matches found

Vulnrichment
Vulnrichment
added 2024/10/04 5:14 p.m.13 views

CVE-2024-8149 BUG-000168624 - Unvalidated redirect in Portal for ArcGIS.

There is a reflected Cross‑Site Scripting XSS vulnerability in Esri Portal for ArcGIS versions 11.1 and 11.2 that may allow a remote, authenticated attacker with low‑privileged access to create a crafted link which, when clicked, could potentially execute arbitrary JavaScript code in the victim’s...

4.6CVSS6AI score0.00392EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/04 5:14 p.m.26 views

CVE-2024-8149 BUG-000168624 - Unvalidated redirect in Portal for ArcGIS.

There is a reflected Cross‑Site Scripting XSS vulnerability in Esri Portal for ArcGIS versions 11.1 and 11.2 that may allow a remote, authenticated attacker with low‑privileged access to create a crafted link which, when clicked, could potentially execute arbitrary JavaScript code in the victim’s...

4.6CVSS0.00392EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/04 5:11 p.m.16 views

CVE-2024-8148 BUG-000168624 - Unvalidated redirect in Portal for ArcGIS. (11.2, 11.1, 10.9.1. and 10.8.1)

There is an unvalidated redirect vulnerability in Esri Portal for ArcGIS 11.2 and below that may allow a remote, unauthenticated attacker to craft a URL that could redirect a victim to an arbitrary website, simplifying phishing attacks...

6.1CVSS6.5AI score0.00295EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/04 5:11 p.m.21 views

CVE-2024-8148 BUG-000168624 - Unvalidated redirect in Portal for ArcGIS. (11.2, 11.1, 10.9.1. and 10.8.1)

There is an unvalidated redirect vulnerability in Esri Portal for ArcGIS 11.2 and below that may allow a remote, unauthenticated attacker to craft a URL that could redirect a victim to an arbitrary website, simplifying phishing attacks...

6.1CVSS0.00295EPSS
Exploits0References1
Rows per page
Query Builder