CVE-2021-29113

Name of the Vulnerable Software and Affected Versions ArcGIS Server (affected versions not specified)

Description The issue is related to incorrect code generation management in the server, allowing a remote attacker to execute arbitrary HTML code. A remote file inclusion vulnerability in the ArcGIS Server help documentation may allow a remote, unauthenticated attacker to inject attacker-supplied HTML into a page.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.