CRITICAL✓ PATCH🇵🇱 Wersja polska

CVE-2024-25693

CVSS 9.9v3.1pub. 2024-04-04upd. 2025-01-08

There is a path traversal in Esri Portal for ArcGIS versions <= 11.2. Successful exploitation may allow a remote, authenticated attacker to traverse the file system to access files or execute code outside of the intended directory. 

🤖 AI Analysis
How it works

The vulnerability consists of insufficient verification of file paths submitted by an authenticated user to the application. An attacker can construct a specially crafted request containing path traversal sequences (e.g., '../'), which allow them to exit the intended working directory. As a result, it is possible to access operating system files and potentially execute code outside the allowed application area.

Impact

An authenticated remote attacker can read sensitive system files and execute code outside the designated application directory, which may lead to complete takeover of the server (RCE). The vulnerability has a changed scope (Scope: Changed), which means possible impact extending beyond the application component itself.

Mitigation & patch

The Portal for ArcGIS Security 2024 Update 1 patch should be applied, available from the vendor. Patch details are described in references on the Esri ArcGIS Enterprise blog. It is also recommended to restrict portal access only to trusted and authenticated users and monitor logs for suspicious requests containing path traversal sequences.

Who is affected

Esri Portal for ArcGIS in versions 11.2 and earlier, running on Linux and Microsoft Windows systems.

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
  • Esri Portal For Arcgis

    APP
    Esri
    ≤ 11.2
  • Linux Kernel

    OS
    Linux
    wszystkie wersje
  • Microsoft Windows

    OS
    Microsoft
    wszystkie wersje
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Tags
Path Traversal
CWE
References

Related vulnerabilities

CVE-2026-8398CRITICAL9.3⚠ KEVPL ✓ten sam produkt

Atak na łańcuch dostaw DAEMON Tools Lite — trojanizacja instalatorów

CVE-2025-10585CRITICAL9.8⚠ KEVPL ✓ten sam produkt

Type confusion w V8 (Google Chrome) — zdalne uszkodzenie sterty

CVE-2025-34028CRITICAL9.3⚠ KEVPL ✓ten sam produkt

Commvault Command Center – nieuwierzytelniony RCE przez path traversal w ZIP

CVE-2024-7262CRITICAL9.3⚠ KEVPL ✓ten sam produkt

Path Traversal w Kingsoft WPS Office — ładowanie dowolnej biblioteki Windows

CVE-2024-4577CRITICAL9.8⚠ KEVPL ✓ten sam produkt

PHP CGI argument injection – RCE na Windows przez mechanizm Best-Fit