GHSA-5rg9-mjfx-pqq5

Опубликовано: 22 июн. 2024

Источник: github

Github: Не прошло ревью

Описание

ArcGIS Enterprise Server 10.8.0 allows a remote attacker to obtain sensitive information because /arcgis/rest/services does not require authentication.

Ссылки

https://nvd.nist.gov/vuln/detail/CVE-2024-37694
https://github.com/NSSCYCTFER/SRC-CVE

CVE ID

CVE-2024-37694

Связанные уязвимости

CVE-2024-37694

nvd

больше 1 года назад

Rejected reason: This submission has been rejected by the CNA of record. Authentication is user configurable as described in our documentation. https://enterprise.arcgis.com/en/server/latest/administer/windows/configuring-arcgis-server-security.htm

CVE ID

CVE-2024-37694