Critical security patch for ArcGIS Server

Esri has discovered a critical security vulnerability in ArcGIS Server of ArcGIS Enterprise resulting in a Server Side Request Forgery (SSRF) issue.

All versions prior to ArcGIS Server 10.8 on both Windows and Linux are impacted by this security issue. Esri has released patches for all supported versions of ArcGIS Server, from version 10.4 through 10.7.1. It is strongly recommended to install the relevant patch at your earliest possible opportunity.

Get the patch

If you have any questions or concerns, please go to My Esri or call 1800 447 111. For any email requests please contact

Subscribe to
Esri Australia news