Security Advisory

CVE-2025-57871

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-29 18:39:13

Last updated 2025-09-29 18:51:37

Assigner Esri

State PUBLISHED

Description

There is a reflected cross site scripting vulnerability in Esri Portal for ArcGIS 11.4 and below that may allow a remote authenticated attacker with administrative access to supply a crafted string which would execute arbitrary JavaScript code in the browser.

← Browse all CVEs View on cve.org ↗