CVE Catalog

CVE-2026-33518

Critical
Published: Translated: NVD NIST

Summary

An incorrect privilege assignment vulnerability exists in Esri Portal for ArcGIS 11.5 in Windows and Linux that allows highly privileged users to create developer credentials that may grant more privileges than expected.

Risk Assessment

The organization may be exposed to unauthorized access to resources and data, potentially leading to serious security breaches.

Recommendation

It is recommended to review and restrict user privileges and to update to the latest version of the software to minimize risk.

Original NVD description (English source)

An incorrect privilege assignment vulnerability exists in Esri Portal for ArcGIS 11.5 in Windows and Linux that allows highly privileged users to create developer credentials that may grant more privileges than expected.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS