CVE-2026-1446 | Esri ArcGIS Pro up to 3.6.0 cross site scripting

Inserito da Angelo Barbosa | Gen 26, 2026 | CVE

A vulnerability was found in Esri ArcGIS Pro up to 3.6.0. It has been rated as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting.

This vulnerability is documented as CVE-2026-1446. The attack needs to be performed locally. There is not any exploit available.

Upgrading the affected component is advised.

CVE-2026-1446 | Esri ArcGIS Pro up to 3.6.0 cross site scripting

Post correlati

CVE-2024-43683 | Microchip TimeProvider 4100 up to 2.4.6 HTTP Header redirect

CVE-2023-52126 | Suman Bhattarai Send Users Email Plugin up to 1.4.3 on WordPress information disclosure

CVE-2023-51071 | QStar Archive Solutions 3-0 Build 7 Patch 0 SMB access control

CVE-2024-21218 | Oracle MySQL Cluster/MySQL Server up to 7.5.35/7.6.31/8.0.39/8.4.2/9.0.1 InnoDB denial of service