📦 Arcgis Pro

An untrusted search path vulnerability in Esri ArcGIS Pro allows attackers with local file system write access to plant malicious executables that execute when users perform specific actions. This cou...

An untrusted search path vulnerability in Esri ArcGIS AllSource versions 1.2 and 1.3 allows attackers with local file system write access to place malicious executables that may execute when users per...

Multiple buffer overflow vulnerabilities in Esri's ArcGIS products allow arbitrary code execution when parsing malicious files. Unauthenticated attackers can exploit these flaws to run code with the p...

A use-after-free vulnerability in Esri ArcGIS products allows arbitrary code execution when parsing malicious files. Unauthenticated attackers can exploit this to run code with the current user's priv...

A Cross-Site Scripting (XSS) vulnerability in Esri ArcGIS Pro versions 3.6.0 and earlier allows local attackers to execute arbitrary JavaScript code within the application. This affects users running ...