Vulnerabilities in Esri

150 results

CVE-2026-2812MEDIUMImproper Authentication issue in ArcGIS ServerEPSS 0.4%CVE-2023-25836MEDIUMBUG-000135364 XSS in 10.8.1 sites builder iframe sourceEPSS 0.4%CVE-2021-29112LOWEsri ArcReader PMF File Parsing Out-Of-Bounds Read Information Disclosure VulnerabilityEPSS 0.3%CVE-2021-29118LOWEsri ArcReader PMF File Parsing Out-Of-Bounds Read Information Disclosure VulnerabilityEPSS 0.3%CVE-2024-25707MEDIUMBUG-000160241 - Reflected XSS in Portal for ArcGISEPSS 0.3%CVE-2022-38200MEDIUMBUG-000142376 - Reflected Cross-Site Scripting (XSS) vulnerability in ArcGIS Server.EPSS 0.3%CVE-2025-67706MEDIUMUnvalidated File Upload vulnerability in ArcGIS Server.EPSS 0.3%CVE-2023-25834MEDIUMBUG-000142922 Incomplete permission changes in specific cases.EPSS 0.3%CVE-2026-33519CRITICALIncorrect privilege assignment in Portal for ArcGISEPSS 0.3%CVE-2024-38038MEDIUMBUG-000165732 - Reflected XSS in Portal for ArcGISEPSS 0.3%CVE-2024-25691MEDIUMBUG-000165286 - Reflected XSS in Portal for ArcGISEPSS 0.3%CVE-2026-2813MEDIUMUnvalidated Redirect in ArcGIS ServerEPSS 0.3%CVE-2026-33518CRITICALIncorrect privilege assignment in Portal for ArcGISEPSS 0.3%CVE-2024-38037MEDIUMBUG-000167983 - Unvalidated redirect in Portal for ArcGISEPSS 0.3%CVE-2024-8148MEDIUMBUG-000168624 - Unvalidated redirect in Portal for ArcGIS. (11.2, 11.1, 10.9.1. and 10.8.1)EPSS 0.3%CVE-2024-51954HIGHUnauthorized access to secure services in ArcGIS ServerEPSS 0.3%CVE-2025-67712MEDIUMHTML injection issue in ArcGIS Web App BuilderEPSS 0.3%CVE-2023-25832HIGHBUG-000148346 There is a Cross-Site Request Forgery (CSRF) vulnerability in Portal for ArcGIS.EPSS 0.3%CVE-2024-25694MEDIUMBUG-000163019 - Stored XSS in Portal for ArcGISEPSS 0.3%CVE-2024-38039MEDIUMBUG-000161683 - HTML injection vulnerability in Portal for ArcGIS.EPSS 0.3%

← previouspage 5 / 8next →