Esri has released the Portal for ArcGIS Security 2022 Update 1 Patch resolving multiple high and medium severity vulnerabilities.
Detailed information about what Log4j CVE's are addressed and how the issues are addressed.
Esri has released ArcReader 10.8.2, which resolves two low and one moderate-risk vulnerabilities.
Esri's statement regarding Log4j vulnerabilities (Log4Shell) and ArcGIS products
Esri has released the ArcGIS Server Security 2021 Update 2 Patch. This patch resolves four recently identified security vulnerabilities.
Portal for ArcGIS Security 2021 Security 2021 Update 1 Patch fixes one high priority vulnerability and two medium priority vulnerabilities.
ArcGIS Server Security 2021 Update 1 Patch fixes one high priority vulnerability and multiple medium priority vulnerabilities.
This security patch addresses a security vulnerability found in ArcGIS GeoEvent Server.
ArcGIS Earth 1.12 resolves a high priority security issue.