Security Advisory

CVE-2025-57874

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-29 18:37:16

Last updated 2025-09-29 19:11:05

Assigner Esri

State PUBLISHED

Description

There is a reflected cross site scripting vulnerability in Esri Portal for ArcGIS 11.4 and below that may allow a remote authenticated attacker with administrative access to supply a crafted string which would execute arbitrary JavaScript code in the browser.

← Browse all CVEs View on cve.org ↗