Detailed information about what Log4j CVE's are addressed and how the issues are addressed.
Esri has released ArcReader 10.8.2, which resolves two low and one moderate-risk vulnerabilities.
Esri's statement regarding Log4j vulnerabilities (Log4Shell) and ArcGIS products
Esri has released the ArcGIS Server Security 2021 Update 2 Patch. This patch resolves four recently identified security vulnerabilities.
Portal for ArcGIS Security 2021 Security 2021 Update 1 Patch fixes one high priority vulnerability and two medium priority vulnerabilities.
ArcGIS Server Security 2021 Update 1 Patch fixes one high priority vulnerability and multiple medium priority vulnerabilities.
This security patch addresses a security vulnerability found in ArcGIS GeoEvent Server.
ArcGIS Earth 1.12 resolves a high priority security issue.
Portal for ArcGIS 10.8.1 Home Application Patch is now available. This patch contains fixes for two moderate priority security issues.