HackerFeeds
All CVEs

CVE-2026-9181

CRITICAL9.8

Published 2026-07-06 · Updated 2026-07-06 · Source psirt@esri.com

Description

ArcGIS Server contains a directory traversal vulnerability. An unauthenticated attacker could exploit this issue by sending crafted path parameters. Successful exploitation could allow access to sensitive files on the system. This issue impacts all versions of ArcGIS Server 12.0 and prior.

CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-22
View on NVD