CVE-2022-38184

Published: 2022-08-16T18:15Z

Last Modified: 2024-11-21T07:15Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

There is an improper access control vulnerability in Portal for ArcGIS versions 10.8.1 and below which could allow a remote, unauthenticated attacker to access an API that may induce Esri Portal for ArcGIS to read arbitrary URLs. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt