Community

All Communities

Products

ArcGIS Pro ArcGIS Survey123 ArcGIS Online ArcGIS Enterprise Data Management Geoprocessing ArcGIS Web AppBuilder ArcGIS Experience Builder ArcGIS Dashboards ArcGIS Spatial Analyst ArcGIS Field Maps All Products Communities

Industries

Education Water Resources State & Local Government Transportation Gas and Pipeline Water Utilities Roads and Highways Telecommunications Natural Resources Electric Public Safety All Industries Communities

Developers

Python JavaScript Maps SDK Native Maps SDKs ArcGIS API for Python ArcObjects SDK ArcGIS Pro SDK Developers - General ArcGIS REST APIs and Services ArcGIS Online Developers File Geodatabase API Game Engine Maps SDKs All Developers Communities

Global

Comunidad Esri Colombia - Ecuador - Panamá ArcGIS 開発者コミュニティ Czech GIS ArcNesia Esri India GeoDev Germany ArcGIS Content - Esri Nederland Esri Italia Community Comunidad GEOTEC Esri Ireland Používatelia ArcGIS All Global Communities

All Communities

Developers User Groups Industries Services Community Resources Global Events Learning Networks ArcGIS Topics GIS Life View All Communities
ArcGIS Ideas
GIS Life
Community Resources

Community Help Documents

Community Blog

Community Feedback

Member Introductions

Community Ideas

All Community Resources

Select to view content in your preferred language

CVE-2019-17267 - FasterXML Jackson-databind

666

0

07-06-2023 06:26 AM

by

Out IT department came across CVE-2019-17267 related to fasterxml jackson-databind and believe it is linked to GeoEvent Server. This also shows up in our dev environment, ArcGIS Server, and ArcGIS for Portal environments. I should also note we no longer use GeoEvent Server.

Has there been any patches or updates to address this CVE? Is it safe to mark this as an exception?

Any help would be appreciated.

Thank you!

Todd

27 KB

0 Replies