Security Advisory

CVE-2022-38189

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-08-16 17:25:13

Last updated 2025-04-10 14:56:40

Assigner Esri

State PUBLISHED

Description

A stored Cross Site Scripting (XSS) vulnerability in Esri Portal for ArcGIS may allow a remote, authenticated attacker to pass and store malicious strings via crafted queries which when accessed could potentially execute arbitrary JavaScript code in the user’s browser.

← Browse all CVEs View on cve.org ↗