Vulnerability CVE-2022-38201

Vulnerability CVE-2022-38201

Published: 2022-11-15

Description:

An unvalidated redirect vulnerability exists in Esri Portal for ArcGIS Quick Capture Web Designer versions 10.8.1 to 10.9.1. A remote, unauthenticated attacker can potentially induce an unsuspecting authenticated user to access an an attacker controlled domain.

Type:

CWE-601

(URL Redirection to Untrusted Site ('Open Redirect'))

References:

https://www.esri.com/arcgis-blog/products/product/uncategorized/portal-for-arcgis-quick-capture-security-patch-is-now-available

Copyright 2024, cxsecurity.com