Security Advisory

CVE-2021-29100

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-05-05 15:16:13

Last updated 2025-04-10 15:21:55

Assigner Esri

State PUBLISHED

Description

A path traversal vulnerability exists in Esri ArcGIS Earth versions 1.11.0 and below which allows arbitrary file creation on an affected system through crafted input. An attacker could exploit this vulnerability to gain arbitrary code execution under security context of the user running ArcGIS Earth by inducing the user to upload a crafted file to an affected system.

← Browse all CVEs View on cve.org ↗