Vulnerability in Esri Arcgis_server
CVE-2013-5221
The mobile-upload feature in Esri ArcGIS for Server 10.1 through 10.2 allows remote authenticated users to upload .exe files by leveraging (1) publisher or (2) administrator privileges.
EPSS: 0.002 (40.3th percentile) — read the EPSS interpretation.
Affected products
- Esri Arcgis_server — versions 10.1, 10.2
- N/a — versions n/a
References
- cve@mitre.org (x_refsource_CONFIRM, Patch, Vendor Advisory)
- cve@mitre.org (x_refsource_CONFIRM, Vendor Advisory)