Vulnerabilities > CVE-2023-25838 - Unspecified vulnerability in Esri Arcgis Insights 2022.1
Attack vector
NETWORK Attack complexity
HIGH Privileges required
LOW Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
There is SQL injection vulnerability in Esri ArcGIS Insights 2022.1 for ArcGIS Enterprise and that may allow a remote, authorized attacker to execute arbitrary SQL commands against the back-end database. The effort required to generate the crafted input required to exploit this issue is complex and requires significant effort before a successful attack can be expected.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |