A Server-Side Request Forgery (SSRF) vulnerability in ArcGIS Server Manager version 10.8.1 and below may allow a remote, unauthenticated malicious user to forge GET requests to arbitrary URLs from the system, potentially leading to network enumeration or facilitating other attacks.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
esri arcgis server |