CVE-2021-29108

Summary

There is an privilege escalation vulnerability in organization-specific logins in Esri Portal for ArcGIS versions 10.9 and below that may allow a remote, authenticated attacker who is able to intercept and modify a SAML assertion to impersonate another account (XML Signature Wrapping Attack). In addition patching, Esri also strongly recommends as best practice for SAML assertions to be signed and encrypted.

Affected Software

VendorProductVersion RangeStatus
EsriPortal for ArcGIS10.9.0 < <10.9.0affected

Weaknesses

  • CWE-347: CWE-347 Improper Verification of Cryptographic Signature

Workarounds

Always encrypt and sign SAML assertions.

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References