Esri Portal For Arcgis 10.7.1
Approved changes feed: RSS · Atom
cpe:2.3:a:esri:portal_for_arcgis:10.7.1:*:*:*:*:*:*:*
part: a version: 10.7.1 update: *
| Vendor | Esri (7fc7b1c4-e95b-5bc9-bfb4-4695cd2e3e82) |
|---|---|
| Product | Portal For Arcgis (4a9585b9-e85b-56ed-a5e6-c7c2789574cc) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2024-38038 |
vulnerable | 2026-06-03 14:56:07.899168 |
BUG-000165732 - Reflected XSS in Portal for ArcGIS
MEDIUM (6.1)
There is a reflected XSS vulnerability in Esri Portal for ArcGIS versions 11.1 which may allow a remote, unauthenticated attacker to create a crafted link which when clicked could potentially execute arbitrary JavaScript code in the victim’s browser.
Published: 2024-10-04T17:19:24.306Z
Updated: 2025-04-10T19:19:18.927Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-38036 |
vulnerable | 2026-06-03 14:56:07.894708 |
BUG-000154827 - Reflected XSS in ArcGIS Experience Builder
MEDIUM (5.4)
There is a reflected XSS vulnerability in Esri Portal for ArcGIS versions 10.9.1 and below which may allow a remote, unauthenticated attacker to create a crafted link which when clicked could potentially execute arbitrary JavaScript code in the victim’s browser.
Published: 2024-10-04T17:16:24.601Z
Updated: 2025-04-10T19:13:35.971Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-25831 |
vulnerable | 2026-06-03 14:49:34.218533 |
BUG-000154236 There is a reflected cross-site scripting (XSS) vulnerability in Portal for ArcGIS.
MEDIUM (6.1)
There is a reflected XSS vulnerability in Esri Portal for ArcGIS versions 10.9.1and below which may allow a remote, unauthenticated attacker to create a crafted link which when clicked could potentially execute arbitrary JavaScript code in the victim’s browser.
Published: 2023-05-09T20:45:19.896Z
Updated: 2025-04-10T18:39:33.871Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-25830 |
vulnerable | 2026-06-03 14:49:34.217422 |
BUG-000154662 Reflected XSS vulnerability in Portal for ArcGIS
MEDIUM (6.1)
There is a reflected XSS vulnerability in Esri Portal for ArcGIS versions 10.9.1and before which may allow a remote, unauthenticated attacker to create a crafted link which when clicked could potentially execute arbitrary JavaScript code in the victim’s browser.
Published: 2023-05-09T16:31:21.361Z
Updated: 2025-04-10T18:36:19.457Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-38207 |
vulnerable | 2026-06-03 14:47:49.453415 |
Reflected XSS vulnerability in Portal for ArcGIS (10.8.1 and 10.7.1 only)
MEDIUM (6.1)
There is a reflected XSS vulnerability in Esri Portal for ArcGIS versions 10.8.1 and 10.7.1 which may allow a remote remote, unauthenticated attacker to create a crafted link which when clicked which could execute arbitrary JavaScript code in the victim’s browser.
Published: 2022-12-30T05:13:00.217Z
Updated: 2025-04-10T14:54:02.665Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-38204 |
vulnerable | 2026-06-03 14:47:49.452208 |
Reflected XSS vulnerability in Portal for ArcGIS (10.8.1 and 10.7.1 only)
MEDIUM (6.1)
There is a reflected XSS vulnerability in Esri Portal for ArcGIS versions 10.8.1 and 10.7.1 which may allow a remote, unauthenticated attacker to create a crafted link which when clicked could potentially execute arbitrary JavaScript code in the victim’s browser.
Published: 2022-12-30T05:13:00.217Z
Updated: 2025-04-10T14:54:47.617Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.