CVE-2024-37694

Опубликовано: 21 июн. 2024

Источник: nvd

Описание

Rejected reason: This submission has been rejected by the CNA of record. Authentication is user configurable as described in our documentation.

https://enterprise.arcgis.com/en/server/latest/administer/windows/configuring-arcgis-server-security.htm

Связанные уязвимости

GHSA-5rg9-mjfx-pqq5

github

больше 1 года назад

ArcGIS Enterprise Server 10.8.0 allows a remote attacker to obtain sensitive information because /arcgis/rest/services does not require authentication.