CVEFinder.io

CVE-2025-67707

🔶 medium
🔍 Scan for this CVE
Summary

ArcGIS Server versions 11.5 and earlier on Windows and Linux do not sufficiently validate uploaded files, enabling a remote unauthenticated attacker to upload arbitrary files to the server’s designated upload directories. However, the server’s architecture enforces controls that restrict uploaded files to non‑executable storage locations and prevent modification or replacement of existing application components or system configurations. Uploaded files cannot be executed, leveraged to escalate p

Description

ArcGIS Server versions 11.5 and earlier on Windows and Linux do not sufficiently validate uploaded files, enabling a remote unauthenticated attacker to upload arbitrary files to the server’s designated upload directories.

However, the server’s architecture enforces controls that restrict uploaded files to non‑executable storage locations and prevent modification or replacement of existing application components or system configurations. Uploaded files cannot be executed, leveraged to escalate privileges, or used to access sensitive data.

Because the issue does not enable execution, service disruption, unauthorized access, or integrity compromise, its impact on confidentiality, integrity, and availability is low. Note that race conditions, secret values, or man‑in‑the‑middle conditions are required for exploitation.

CVSS Score
5.6
Medium
EPSS Score
0.3
Exploit Probability
Published Date
2025-12-31
First Seen: 2026-01-05
📊 Relative Risk Intelligence

This CVE is Lower Risk - more severe than 32.7% of all 329,456 vulnerabilities in our database.

#221,882
Below average severity
Severity Percentile
🎯 CISA SSVC Assessment Updated: Jan 2, 2026
🔍 Exploitation Status
None
No known exploits
⚙️ Automatable
NO
Requires human interaction
💥 Technical Impact
Partial
Limited system impact
SSVC data provided by CISA
Last Modified 2026-02-20
Source NVD 🔗
CVSS Vector 3.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
CWE IDs (Weakness Types)
CWE-434

📦 Affected Products 1

Vendor Product Status Affected Versions
esri arcgis_server Affected
≤ 11.5

🔗 References 1

https://www.esri.com/arcgis-blog/products/trust-arcg...
Patch Vendor Advisory

🔗 Related CVEs 6

CVE ID Severity CVSS EPSS Summary Published
CVE-2026-2812 🔶 medium 5.3 0.1 ArcGIS Server contains an improper authentication vulnerability in an undocumented administrative endpoint. An unauthent... 2026-05-20
CVE-2026-2813 🔶 medium 4.7 0.0 ArcGIS Server contains an input validation weakness in the login redirection workflow. An Authenticated attacker could e... 2026-05-20
CVE-2025-67703 🔶 medium 6.1 0.1 There is a stored cross site scripting issue in Esri ArcGIS Server 11.4 and earlier on Windows and Linux that in some co... 2025-12-31
CVE-2025-67704 🔶 medium 6.1 0.1 There is a stored cross site scripting issue in Esri ArcGIS Server 11.4 and earlier on Windows and Linux that in some co... 2025-12-31
CVE-2025-67705 🔶 medium 6.1 0.1 There is a stored cross site scripting issue in Esri ArcGIS Server 11.4 and earlier on Windows and Linux that in some co... 2025-12-31
CVE-2025-67706 🔶 medium 5.6 0.1 ArcGIS Server versions 11.5 and earlier on Windows and Linux do not sufficiently validate uploaded files, enabling a rem... 2025-12-31
These CVEs affect the same products