English
Continue in the app
Bug Number BUG-000131992
Submitted Jul 01, 2020
Modified Aug 12, 2022
Severity Medium
Applies To ArcGIS GIS Server
Version Found 10.5.1
Prog Language N/A
Server Platform Windows OS 10.0 64 Bit
Client Platform Windows OS 10.0 64 Bit
Database N/A
Locale N/A
Status Fixed
Learn more
Version Fixed 10.9
SP Fixed N/A

Bug BUG-000131992

Synopsis

Reflected cross-site scripting (XSS) vulnerability in ArcGIS Server. Note This security patch addresses multiple security vulnerabilities found in ArcGIS Server. Esri recommends that all customers using ArcGIS Server 10.8.1, 10.7.1, and 10.6.1 apply this patch.


Additional Information

N/A


Alternate Solution

The ArcGIS Server Security 2021 Update 1 Patch is now live on the support site. The URL is:

https://support.esri.com/en/download/7879