CVE-2021-29102

Name of the Vulnerable Software and Affected Versions: ArcGIS Server Manager versions 10.8.1 and below

Description: A Server-Side Request Forgery (SSRF) issue may allow a remote, unauthenticated attacker to forge GET requests to arbitrary URLs from the system, potentially leading to network enumeration or facilitating other attacks.

Recommendations: For ArcGIS Server Manager versions 10.8.1 and below, update to a version above 10.8.1 to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.