ГлавнаяУязвимости → CVE-2026-33519
9.8критическая

CVE-2026-33519

Описание

An incorrect authorization vulnerability exists in Esri Portal for ArcGIS 11.4, 11.5 and 12.0 on Windows, Linux and Kubernetes that did not correctly check permissions assigned to developer credentials.

Затрагиваемое ПО
Esri Portal for arcgisKubernetes KubernetesLinux Linux kernelMicrosoft Windows
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://www.esri.com/arcgis-blog/products/trust-arcgis/administration/april2026_security_bulletin