Esri: >> Arcgis Server >> 10.7.1 Security Vulnerabilities
Multiple uninitialized pointer vulnerabilities when parsing a specially crafted file in Esri ArcGIS Server 10.8.1 (and earlier) allows an authenticated attacker with specialized permissions to achieve arbitrary code execution in the context of the service account.
CVSS Score
6.4
EPSS Score
0.004
Published
2021-03-25
Esri ArcGIS Server before 10.8 is vulnerable to SSRF in some configurations.
CVSS Score
9.8
EPSS Score
0.003
Published
2020-12-26
Page 2