ArcGIS Enterprise

Security Patch for ArcGIS Enterprise Sites Builder 10.8.1

A moderate priority Cross Site Scripting (XSS) vulnerability has been discovered in ArcGIS Enterprise Sites Builder version 10.8.1.  

This is a moderate priority issue with a CVSSv3: 6.8. 

Esri recommends all ArcGIS Enterprise administrators install this patch by using the ArcGIS Enterprise “Patch Notification” tool or by downloading the appropriate patch for your ArcGIS Enterprise site from 

Be sure to subscribe to the RSS feed on the ArcGIS Trust Center for timely notifications regarding trends and issues related to security issues that impact the ArcGIS Platform. 


Check for and install software patches and updates 

How To: Schedule Automatic Updates for ArcGIS Enterprise 

Security Update Statement 


About the author

Jenny Urquidi

I'm a member of the Software Security and Privacy Team. My area of focus is Information Assurance.

Notify of
Inline Feedbacks
View all comments

Next Article

ArcGIS Monitor at Esri 2024 User Conference

Read this article