Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2022-38197

Disclosure Date: August 17, 2022 (last updated December 22, 2024)
Esri ArcGIS Server versions 10.9.1 and below have an unvalidated redirect issue that may allow a remote, unauthenticated attacker to phish a user into accessing an attacker controlled website via a crafted query parameter.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0