Bug
Reflected cross-site scripting (XSS) vulnerability in ArcGIS Server. Note This security patch addresses multiple security vulnerabilities found in ArcGIS Server. Esri recommends that all customers using ArcGIS Server 10.8.1, 10.7.1, and 10.6.1 apply this patch.
| Bug ID Number | BUG-000131992 |
|---|---|
| Submitted | July 1, 2020 |
| Last Modified | May 31, 2023 |
| Applies to | ArcGIS GIS Server |
| Version found | 10.5.1 |
| Operating System | Windows OS |
| Operating System Version | 10.0 64 Bit |
| Version Fixed | 10.9 |
| Status | Fixed |
Workaround
The ArcGIS Server Security 2021 Update 1 Patch is now live on the support site. The URL is:
https://support.esri.com/en/download/7879
Steps to Reproduce
Bug ID: BUG-000131992
Software:
- ArcGIS GIS Server
Get help from ArcGIS experts
Download the Esri Support App
Discover more on this topic
Search for related information
Find training related to this topic
Explore ideas and give feedback