漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Unvalidated File Upload vulnerability in ArcGIS Server.
Vulnerability Description
Esri ArcGIS Server contains an unrestricted file upload vulnerability. An unauthenticated attacker could exploit this issue by uploading a crafted file to the affected endpoint. Successful exploitation could allow arbitrary file upload, potentially allowing for other attacks. This issue impacts all versions of ArcGIS Server on Windows and Linux 12.0 and prior. This issue does not impact ArcGIS Enterprise for Kubernetes.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
危险类型文件的不加限制上传
Vulnerability Title
Esri ArcGIS Server 任意文件上传漏洞
Vulnerability Description
Esri arcgis server是美国Esri公司的一套地理信息系统服务器。 Esri ArcGIS Server 12.0及之前版本存在任意文件上传漏洞,该漏洞源于任意文件上传问题,可能导致未经身份验证的攻击者通过上传特制文件到受影响端点,执行任意文件上传。
CVSS Information
N/A
Vulnerability Type
N/A