Source |
CVE Liste |
Identifiant |
8295863 |
Date de publication |
2022-12-29 20:15:09 (vue: 2022-12-29 22:08:18) |
Titre |
CVE-2022-38203 |
Texte |
Protections against potential Server-Side Request Forgery (SSRF) vulnerabilities in Esri Portal for ArcGIS versions 10.8.1 and below were not fully honored and may allow a remote, unauthenticated attacker to forge requests to arbitrary URLs from the system, potentially leading to network enumeration or reading from hosts inside the network perimeter, a different issue than CVE-2022-38211 and CVE-2022-38212. |
Envoyé |
Oui |
Condensat |
2022 38203 38211 38212 against allow arbitrary arcgis attacker below cve different enumeration esri forge forgery from fully honored hosts inside issue leading may network not perimeter portal potential potentially protections reading remote request requests server side ssrf system than unauthenticated urls versions vulnerabilities |
Tags |
Guideline
|
Stories |
|
Notes |
|
Move |
|