Esri ArcGIS Enterprise 10.9.1

CPE Details

Esri ArcGIS Enterprise 10.9.1
esri
arcgis_enterprise
10.9.1
2025-01-30
15h26 +00:00
2025-01-30
15h26 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:esri:arcgis_enterprise:10.9.1:*:*:*:*:*:*:*

Informations

Vendor

esri

Product

arcgis_enterprise

Version

10.9.1

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2024-25699 2024-04-04 17h56 +00:00 There is a difficult to exploit improper authentication issue in the Home application for Esri Portal for ArcGIS versions 10.8.1 through 11.2 on Windows and Linux, and ArcGIS Enterprise 11.1 and below on Kubernetes which, under unique circumstances, could potentially allow a remote, unauthenticated attacker to compromise the confidentiality, integrity, and availability of the software.
8.5
High
CVE-2024-25708 2024-04-04 17h52 +00:00 There is a stored Cross-site Scripting vulnerability in Esri Portal for ArcGIS Enterprise Web App Builder versions 10.8.1 – 10.9.1 that may allow a remote, authenticated attacker to create a crafted link which when clicked could potentially execute arbitrary JavaScript code in the victim’s browser. The privileges required to execute this attack are high. 
4.8
Medium