Cross-Site Request Forgery Vulnerability in Esri Portal for ArcGIS Versions 11.0 and Below

Cross-Site Request Forgery Vulnerability in Esri Portal for ArcGIS Versions 11.0 and Below

CVE-2023-25832 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

There is a cross-site-request forgery vulnerability in Esri Portal for ArcGIS Versions 11.0 and below that may allow an attacker to trick an authorized user into executing unwanted actions.

Learn more about our User Device Pen Test.