漏洞
Portal users with a custom Publisher role that have either the 'Members > View All' or 'Groups > View All' administrative privileges enabled have the ability to delete server folders and the services within the folders owned by other users.
| 漏洞 ID 编号 | BUG-000162569 |
|---|---|
| 已提交 | October 31, 2023 |
| 上次修改时间 | September 2, 2025 |
| 适用范围 | Portal for ArcGIS |
| 找到的版本 | 11.1 |
| 操作系统 | Windows OS |
| 操作系统版本 | N/A |
| 状态 | In Review |
解决办法
Only use the Portal Administrator user role to delete server folders, as a user with this role is able to see any services that exist within the folders.
重现步骤
漏洞 ID: BUG-000162569
软件:
- Portal for ArcGIS
当漏洞状态发生变化时获得通知
发现关于本主题的更多内容
搜索相关信息
查找与此主题相关的培训
探索想法并提供反馈
获取来自 ArcGIS 专家的帮助
下载 Esri 支持应用程序