Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
esri arcgis desktop vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-9741
Multiple cross-site scripting (XSS) vulnerabilities in ESRI ArcGIS for Desktop, ArcGIS for Engine, and ArcGIS for Server 10.2.2 and previous versions allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Esri Arcgis For Engine
Esri Arcgis For Desktop
Esri Arcgis Server
7.8
CVSSv3
CVE-2021-29096
A use-after-free vulnerability when parsing a specially crafted file in Esri ArcReader, ArcGIS Desktop, ArcGIS Engine 10.8.1 (and previous versions) and ArcGIS Pro 2.7 (and previous versions) allows an unauthenticated malicious user to achieve arbitrary code execution in the cont...
Esri Arcgis Pro
Esri Arcreader
Esri Arcgis Engine
Esri Arcmap
7.8
CVSSv3
CVE-2021-29098
Multiple uninitialized pointer vulnerabilities when parsing a specially crafted file in Esri ArcReader, ArcGIS Desktop, ArcGIS Engine 10.8.1 (and previous versions) and ArcGIS Pro 2.7 (and previous versions) allow an unauthenticated malicious user to achieve arbitrary code execut...
Esri Arcgis
Esri Arcgis Pro
Esri Arcreader
Esri Arcmap
7.8
CVSSv3
CVE-2021-29097
Multiple buffer overflow vulnerabilities when parsing a specially crafted file in Esri ArcReader, ArcGIS Desktop, ArcGIS Engine 10.8.1 (and previous versions) and ArcGIS Pro 2.7 (and previous versions) allow an unauthenticated malicious user to achieve arbitrary code execution in...
Esri Arcgis
Esri Arcgis Pro
Esri Arcreader
Esri Arcmap
7
CVSSv3
CVE-2023-25839
There is SQL injection vulnerability in Esri ArcGIS Insights Desktop for Mac and Windows version 2022.1 that may allow a local, authorized malicious user to execute arbitrary SQL commands against the back-end database. The effort required to generate the crafted input required t...
Esri Arcgis Insights 2022.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-52710
arbitrary
CVE-2024-5272
CVE-2024-2961
brute force
remote
CVE-2024-32944
CVE-2024-36241
CVE-2024-5274
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started