PT-2022-9910 · Esri · Esri Arcreader
Published
2022-01-31
·
Updated
2022-08-15
·
CVE-2021-29118
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Esri ArcReader versions 10.8.1 and earlier
Description
An out-of-bounds read issue exists when parsing a specially crafted file, allowing an unauthenticated attacker to induce an information disclosure issue in the context of the current user.
Recommendations
For Esri ArcReader versions 10.8.1 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.
Out of bounds Read
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Esri Arcreader