There is a reflected XSS vulnerability in Esri Portal for ArcGIS versions 10.8.1 and below which may allow a remote attacker able to convince a user to click on a crafted link which could potentially execute arbitrary JavaScript code in the victim’s browser.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: Esri
Published: 2022-06-28T00:00:00
Updated: 2022-08-15T20:45:12
Reserved: 2022-08-12T00:00:00
Link: CVE-2022-38186
JSON object: View
NVD Information
Status : Modified
Published: 2022-08-15T21:15:11.287
Modified: 2023-11-07T03:50:04.417
Link: CVE-2022-38186
JSON object: View
Redhat Information
No data.
CWE