Описание
There is a path traversal in Esri Portal for ArcGIS versions <= 11.2. Successful exploitation may allow a remote, authenticated attacker to traverse the file system to access files or execute code outside of the intended directory.
Уязвимые конфигурации
Конфигурация 1Версия до 11.2 (включая)
Одновременно
cpe:2.3:a:esri:portal_for_arcgis:*:*:*:*:*:*:*:*
Одно из
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
EPSS
Процентиль: 94%
0.15249
Средний
9.9 Critical
CVSS3
Дефекты
CWE-22
Связанные уязвимости
CVSS3: 9.9
github
почти 2 года назад
There is a path traversal in Esri Portal for ArcGIS versions <= 11.2. Successful exploitation may allow a remote, authenticated attacker to traverse the file system to access files or execute code outside of the intended directory.
EPSS
Процентиль: 94%
0.15249
Средний
9.9 Critical
CVSS3
Дефекты
CWE-22