CVE-2024-38039 | Esri Portal for ArcGIS up to 10.9.1/11.1 on ArcGIS Link cross site scripting

Inserito da Angelo Barbosa | Ott 4, 2024 | CVE

A vulnerability classified as problematic was found in Esri Portal for ArcGIS up to 10.9.1/11.1 on ArcGIS. Affected by this vulnerability is an unknown functionality of the component Link Handler. The manipulation leads to basic cross site scripting.

This vulnerability is known as CVE-2024-38039. The attack can be launched remotely. There is no exploit available.

CVE-2024-38039 | Esri Portal for ArcGIS up to 10.9.1/11.1 on ArcGIS Link cross site scripting

Post correlati

CVE-2024-28836 | mbed TLS 3.5.x ClientHello inadequate encryption

CVE-2024-22873 | Tencent Blueking CMDB up to 3.9.x HTTP POST Request /service/subscription.go server-side request forgery

CVE-2024-38809 | Vmware Spring Framework up to 5.3.37/6.0.22/6.1.11 Conditional HTTP Request ETags denial of service

CVE-2022-48719 | Linux Kernel up to 5.16.7 neigh __neigh_event_send deadlock (203a35ebb49c/4a81f6da9cb2)