Bug Number BUG-000128058
Submitted Jan 21, 2020
Modified Jan 31, 2023
Severity Critical
Applies To Portal for ArcGIS
Version Found 10.7.1
Prog Language N/A
Server Platform N/A
Client Platform N/A
Database N/A
Locale N/A
Status Fixed
Learn more
Version Fixed 10.8
SP Fixed N/A

Bug BUG-000128058


Portal for ArcGIS has a Server Side Request Forgery (SSRF) security vulnerability.

Additional Information


Alternate Solution

The Portal for ArcGIS Security 2020 Update 1 Patch is now live on the support site. The URL is https://support.esri.com/en/download/7777.