Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
There is an improper access control vulnerability in Portal for ArcGIS versions 10.8.1
Vulnerability Description
There is an improper access control vulnerability in Portal for ArcGIS versions 10.8.1 and below which could allow a remote, unauthenticated attacker to access an API that may induce Esri Portal for ArcGIS to read arbitrary URLs.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
访问控制不恰当
Vulnerability Title
Esri Portal For ArcGis 安全漏洞
Vulnerability Description
Esri Portal For ArcGis是美国Esri公司的一种允许在组织内与其他人共享地图、场景、应用程序和其他地理信息的组件。 Portal for ArcGIS 10.8.1及之前版本存在安全漏洞,该漏洞源于存在不正确的访问控制漏洞,可能允许未经身份验证的远程攻击者访问可能导致其读取任意 URL的API。
CVSS Information
N/A
Vulnerability Type
N/A