CVE-2013-7232

Name of the Vulnerable Software and Affected Versions ESRI ArcGIS for Server versions through 10.2

Description The issue allows remote attackers to execute arbitrary SQL commands via unspecified input to the map or feature service. This can be exploited by providing malicious input to the service, potentially leading to unauthorized access or data manipulation.

Recommendations For ESRI ArcGIS for Server versions through 10.2, update to a version later than 10.2 to resolve the issue. As a temporary workaround, consider restricting access to the map or feature service to minimize the risk of exploitation.