CVE-2021-29108

Опубликовано: 01 окт. 2021

Источник: nvd

CVSS3: 8.8

CVSS2: 6.5

EPSS Низкий

Описание

There is an privilege escalation vulnerability in organization-specific logins in Esri Portal for ArcGIS versions 10.9 and below that may allow a remote, authenticated attacker who is able to intercept and modify a SAML assertion to impersonate another account (XML Signature Wrapping Attack). In addition patching, Esri also strongly recommends as best practice for SAML assertions to be signed and encrypted.

Ссылки

https://downloads.esri.com/RESOURCES/ENTERPRISEGIS/Organization-Specific_Logins_FAQs.pdf
Product
Technical Description
https://www.esri.com/arcgis-blog/products/arcgis-enterprise/administration/Portal-for-ArcGIS-Security-2021-Update-1-Patch/
Vendor Advisory
https://downloads.esri.com/RESOURCES/ENTERPRISEGIS/Organization-Specific_Logins_FAQs.pdf
Product
Technical Description
https://www.esri.com/arcgis-blog/products/arcgis-enterprise/administration/Portal-for-ArcGIS-Security-2021-Update-1-Patch/
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:esri:portal_for_arcgis:*:*:*:*:*:*:*:*

Версия до 10.9 (включая)

EPSS

Процентиль: 52%

0.00292

Низкий

8.8 High

CVSS3

6.5 Medium

CVSS2

Дефекты

CWE-347

Связанные уязвимости

GHSA-249c-5cfq-cwqh