Lucene search
K

4 matches found

Cvelist
Cvelist
added 2022/12/30 5:13 a.m.32 views

CVE-2022-38211 Server Side Request Forgery (SSRF) vulnerability in Portal for ArcGIS (10.9.1, 10.8.1 and 10.7.1 only)

Protections against potential Server-Side Request Forgery SSRF vulnerabilities in Esri Portal for ArcGIS versions 10.9.1 and below were not fully honored and may allow a remote, unauthenticated attacker to forge requests to arbitrary URLs from the system, potentially leading to network enumeratio...

7.5CVSS8AI score0.00876EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/12/30 5:13 a.m.6 views

CVE-2022-38211 Server Side Request Forgery (SSRF) vulnerability in Portal for ArcGIS (10.9.1, 10.8.1 and 10.7.1 only)

Protections against potential Server-Side Request Forgery SSRF vulnerabilities in Esri Portal for ArcGIS versions 10.9.1 and below were not fully honored and may allow a remote, unauthenticated attacker to forge requests to arbitrary URLs from the system, potentially leading to network enumeratio...

7.5CVSS7.8AI score0.00876EPSS
Exploits0References1
CVE
CVE
added 2022/12/30 5:13 a.m.61 views

CVE-2022-38211

CVE-2022-38211 affects Esri Portal for ArcGIS (ArcGIS Portal) with versions 10.9.1 and earlier. The issue is a Server-Side Request Forgery (SSRF) vulnerability that may allow a remote, unauthenticated attacker to forge requests to arbitrary URLs from the system, potentially enabling network enume...

7.5CVSS7.8AI score0.00876EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/12/29 8:15 p.m.22 views

Server side request forgery (ssrf)

Protections against potential Server-Side Request Forgery SSRF vulnerabilities in Esri Portal for ArcGIS versions 10.8.1 and below were not fully honored and may allow a remote, unauthenticated attacker to forge requests to arbitrary URLs from the system, potentially leading to network enumeratio...

5CVSS7.8AI score0.00876EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder