Vulnerability Details CVE-2025-4967
Esri Portal for ArcGIS 11.4 and prior allows a remote, unauthenticated attacker to bypass the Portal’s SSRF protections.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 11.8%
CVSS Severity
CVSS v3 Score 9.1
Products affected by CVE-2025-4967
-
cpe:2.3:a:esri:portal_for_arcgis:-
-
cpe:2.3:a:esri:portal_for_arcgis:10.6
-
cpe:2.3:a:esri:portal_for_arcgis:10.6.1
-
cpe:2.3:a:esri:portal_for_arcgis:10.7.1
-
cpe:2.3:a:esri:portal_for_arcgis:10.8
-
cpe:2.3:a:esri:portal_for_arcgis:10.8.1
-
cpe:2.3:a:esri:portal_for_arcgis:10.9
-
cpe:2.3:a:esri:portal_for_arcgis:10.9.1
-
cpe:2.3:a:esri:portal_for_arcgis:11.0
-
cpe:2.3:a:esri:portal_for_arcgis:11.1
-
cpe:2.3:a:esri:portal_for_arcgis:11.2