漏洞
There are XML external entity (XXE) and Server Side Request Forgery (SSRF) vulnerabilities in Portal for ArcGIS.
| 漏洞 ID 编号 | BUG-000132353 |
|---|---|
| 已提交 | July 18, 2020 |
| 上次修改时间 | May 31, 2023 |
| 适用范围 | Portal for ArcGIS |
| 找到的版本 | 10.7.1 |
| 服务器平台 | Windows OS |
| 客户端平台 | 2016 64 Bit |
| Version Fixed | 10.8.1 |
| 状态 | Fixed |
附加信息
The fix of this defect for Portal for ArcGIS 10.6.1 and Portal for ArcGIS 10.7.1 is provided in the 'Portal for ArcGIS Security 2020 Update 2 Patch' security patch. Refer to https://support.esri.com/en/download/7837.解决办法
Refer to https://support.esri.com/en/download/7837 for the 'Portal for ArcGIS Security 2020 Update 2 Patch' security patch.
重现步骤
漏洞 ID: BUG-000132353
软件:
- Portal for ArcGIS
从 ArcGIS 专家处获得帮助
下载 Esri 支持应用程序
发现关于本主题的更多内容
搜索相关信息
查找与此主题相关的培训
探索想法并提供反馈