CVE-2025-67708 | Esri ArcGIS Server up to 11.4 on Windows/Linux Configuration cross site scripting

Inserito da Angelo Barbosa | Gen 1, 2026 | CVE

A vulnerability identified as problematic has been detected in Esri ArcGIS Server up to 11.4 on Windows/Linux. The impacted element is an unknown function of the component Configuration Handler. This manipulation causes cross site scripting.

This vulnerability appears as CVE-2025-67708. The attack may be initiated remotely. There is no available exploit.

CVE-2025-67708 | Esri ArcGIS Server up to 11.4 on Windows/Linux Configuration cross site scripting

Post correlati

CVE-2024-6756 | Social Auto Poster Plugin up to 5.3.14 on WordPress unrestricted upload

CVE-2025-20349 | Cisco Digital Network Architecture Center up to 2.3.7.9-VA REST API os command injection (cisco-sa-dnac-ci-ZWLQVSwT)

CVE-2021-47083 | Linux Kernel up to 5.4.168/5.10.88/5.15.11 mediatek desc[eint_n out-of-bounds

CVE-2024-29038 | tpm2-tools Quote Data tpm2_checkquote Privilege Escalation