laptop and a wrench


Portal for ArcGIS has a Server Side Request Forgery (SSRF) security vulnerability.

Last Published: March 3, 2020 Portal for ArcGIS
Bug ID Number BUG-000128058
SubmittedJanuary 21, 2020
Last ModifiedJune 5, 2024
Applies toPortal for ArcGIS
Version found10.7.1
Operating SystemWindows OS
Operating System Version2016 64 Bit
Version Fixed10.8


The Portal for ArcGIS Security 2020 Update 1 Patch is now live on the support site. The URL is

Steps to Reproduce

Bug ID: BUG-000128058


  • Portal for ArcGIS

Get notified when the status of a bug changes

Download the Esri Support App

Discover more on this topic

Get help from ArcGIS experts

Contact technical support

Download the Esri Support App

Go to download options