Security Advisory

CVE-2025-57877

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-29 18:34:59

Last updated 2025-09-29 19:53:54

Assigner Esri

State PUBLISHED

Description

There is a reflected cross site scripting vulnerability in Esri Portal for ArcGIS 11.4 and below that may allow a remote authenticated attacker with administrative access to supply a crafted string which would execute arbitrary JavaScript code in the browser.

← Browse all CVEs View on cve.org ↗