{"id":2374752,"date":"2025-01-14T12:00:17","date_gmt":"2025-01-14T20:00:17","guid":{"rendered":"https:\/\/www.esri.com\/arcgis-blog\/?post_type=blog&#038;p=2374752"},"modified":"2025-12-22T09:40:57","modified_gmt":"2025-12-22T17:40:57","slug":"portal-for-arcgis-security-2024-update-2","status":"publish","type":"blog","link":"https:\/\/www.esri.com\/arcgis-blog\/products\/trust-arcgis\/administration\/portal-for-arcgis-security-2024-update-2","title":{"rendered":"Portal for ArcGIS Security 2024 Update 2 Released"},"author":136891,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","format":"standard","meta":{"_acf_changed":false,"_searchwp_excluded":""},"categories":[37501],"tags":[24081,759222,24071,241722],"industry":[],"product":[763582],"class_list":["post-2374752","blog","type-blog","status-publish","format-standard","hentry","category-administration","tag-ssamymlgp","tag-cve","tag-security","tag-ssamlymlgp","product-trust-arcgis"],"acf":{"authors":[{"ID":136891,"user_firstname":"Mark","user_lastname":"Bierman","nickname":"Mark Bierman","user_nicename":"mbierman","display_name":"Mark Bierman","user_email":"MBierman@esri.com","user_url":"","user_registered":"2020-12-08 21:10:04","user_description":"","user_avatar":"<img data-del=\"avatar\" src='https:\/\/www.esri.com\/arcgis-blog\/app\/uploads\/2023\/06\/softwaresecurity-213x200.png' class='avatar pp-user-avatar avatar-96 photo ' height='96' width='96'\/>"},{"ID":3911,"user_firstname":"Michael","user_lastname":"Young","nickname":"Michael Young","user_nicename":"myoung1000","display_name":"Michael Young","user_email":"myoung@esri.com","user_url":"http:\/\/trust.arcgis.com","user_registered":"2018-03-02 00:15:29","user_description":"","user_avatar":"<img data-del=\"avatar\" src='https:\/\/www.esri.com\/arcgis-blog\/app\/uploads\/2021\/12\/SSP-213x200.jpg' class='avatar pp-user-avatar avatar-96 photo ' height='96' width='96'\/>"},{"ID":5311,"user_firstname":"Randall","user_lastname":"Williams","nickname":"Randall Williams","user_nicename":"randallwilliams","display_name":"Randall Williams","user_email":"randall_williams@esri.com","user_url":"https:\/\/trust.arcgis.com","user_registered":"2018-03-02 00:17:03","user_description":"","user_avatar":"<img data-del=\"avatar\" src='https:\/\/www.esri.com\/arcgis-blog\/app\/uploads\/2018\/08\/softwaresecurity.png' class='avatar pp-user-avatar avatar-96 photo ' height='96' width='96'\/>"}],"short_description":"The Portal for ArcGIS Security 2024 Update 2 is available. Install these patches at your earliest opportunity to address these vulnerabilities.","flexible_content":[{"acf_fc_layout":"content","content":"<p>Esri has released the Portal for ArcGIS Security 2024 Update 2 Patch, resolving multiple high and medium severity security vulnerabilities across versions 11.2, 11.1, 10.9.1, 10.8.1.<\/p>\n<p>&nbsp;<\/p>\n<p>This patch was released on August 22nd, 2024, and is available <a href=\"https:\/\/support.esri.com\/en-us\/patches-updates\/2024\/portal-for-arcgis-security-2024-update-2-patch\">here<\/a>.<\/p>\n<p>&nbsp;<\/p>\n"},{"acf_fc_layout":"sidebar","content":"<h4>Key Highlights<\/h4>\n<h4>Esri has released Security Patches for Portal for ArcGIS.<\/h4>\n<h4>These patches should be applied to each Portal for ArcGIS machine (Windows or Linux) that participate in an ArcGIS Enterprise Site.<\/h4>\n<h4>Users and System administrators:\u00a0 Take the time to install these patches at your earliest opportunity to address these vulnerabilities.<\/h4>\n<p>&nbsp;<\/p>\n","image_reference":false,"layout":"standard","image_reference_figure":"","snippet":"","spotlight_name":"","section_title":"","position":"Right","spotlight_image":false},{"acf_fc_layout":"content","content":"<p><strong>January 14, 2025<\/strong>: The 10.9.1 and 10.8.1 versions of the Portal for ArcGIS Security 2024 Update 2 Patch have been updated to resolve BUG-000154028. Refer to the <a href=\"https:\/\/support.esri.com\/en-us\/patches-updates\/2024\/portal-for-arcgis-security-2024-update-2-patch#bugs\">Issues Addressed with this Patch<\/a> section for details about BUG-000154028. Additionally, the Linux setups have been updated to address an uninstall issue. Please download and install the new setup. It is not necessary to uninstall the original patch, the new setup will install and replace the original patch. The new patch when shown as available in the ArcGIS Enterprise Patch Notification tool, is listed as Portal for ArcGIS Security 2024 Update 2 Patch (without the B suffix) with a release date of January 14, 2025; once installed, it is listed as Portal for ArcGIS Security 2024 Update 2 Patch B.<\/p>\n<p>We provide Common Vulnerability Scoring System v.3.1 and v.4.0 (CVSS) scores to allow our customers to better assess the risk of these vulnerabilities to their operations. Both base and modified temporal scores are provided to reflect the availability of an official patch.<\/p>\n<p>Vulnerabilities fixed by this patch:<\/p>\n<p>Local File Inclusion &#8211; (LFI)<\/p>\n<ul>\n<li>CVE Details: CVE-2024-38040<\/li>\n<li>CWE-73: External Control of File Name or Path<\/li>\n<li>Base CVSS 3.1: <a href=\"https:\/\/www.first.org\/cvss\/calculator\/3.1#CVSS:3.1\/AV:N\/AC:L\/PR:N\/UI:N\/S:U\/C:H\/I:N\/A:N\">7.5<\/a> \u00a0Base CVSS 4.0: <a href=\"https:\/\/www.first.org\/cvss\/calculator\/4.0#CVSS:4.0\/AV:N\/AC:L\/AT:N\/PR:N\/UI:N\/VC:H\/VI:N\/VA:N\/SC:N\/SI:N\/SA:N\">8.7<\/a><\/li>\n<\/ul>\n<p>Cross Site Scripting \u2013 (XSS)<\/p>\n<ul>\n<li>CVE Details: CVE-2024-38038<\/li>\n<li>CWE-79: Improper Neutralization of Input During Web Page Generation<\/li>\n<li>Base CVSS 3.1: <a href=\"https:\/\/www.first.org\/cvss\/calculator\/3.1#CVSS:3.1\/AV:N\/AC:L\/PR:N\/UI:R\/S:C\/C:L\/I:L\/A:N\">6.1<\/a> \u00a0Base CVSS 4.0: <a href=\"https:\/\/www.first.org\/cvss\/calculator\/4.0#CVSS:4.0\/AV:N\/AC:L\/AT:N\/PR:N\/UI:P\/VC:L\/VI:L\/VA:N\/SC:L\/SI:L\/SA:N\">5.3<\/a><\/li>\n<\/ul>\n<p>Cross Site Scripting \u2013 (XSS)<\/p>\n<ul>\n<li>CVE Details: CVE-2024-25691<\/li>\n<li>CWE-79 Improper Neutralization of Input During Web Page Generation<\/li>\n<li>Base CVSS 3.1: <a href=\"https:\/\/www.first.org\/cvss\/calculator\/3.1#CVSS:3.1\/AV:N\/AC:L\/PR:N\/UI:R\/S:C\/C:L\/I:L\/A:N\">6.1<\/a> \u00a0Base CVSS 4.0: <a href=\"https:\/\/www.first.org\/cvss\/calculator\/4.0#CVSS:4.0\/AV:N\/AC:L\/AT:N\/PR:N\/UI:P\/VC:L\/VI:L\/VA:N\/SC:L\/SI:L\/SA:N\">5.3<\/a><\/li>\n<\/ul>\n<p>Unvalidated Redirect<\/p>\n<ul>\n<li>CVE Details: CVE-2024-38037<\/li>\n<li>CWE-601 URL Redirection to Untrusted Site (&#8216;Open Redirect&#8217;)<\/li>\n<li>Base CVSS 3.1: <a href=\"https:\/\/www.first.org\/cvss\/calculator\/3.1#CVSS:3.1\/AV:N\/AC:L\/PR:N\/UI:R\/S:C\/C:L\/I:L\/A:N\">6.1<\/a>\u00a0 Base CVSS 4.0: <a href=\"https:\/\/www.first.org\/cvss\/calculator\/4.0#CVSS:4.0\/AV:N\/AC:L\/AT:N\/PR:N\/UI:P\/VC:L\/VI:L\/VA:N\/SC:L\/SI:L\/SA:N\">5.3<\/a><\/li>\n<li>Mitigations:\n<ol>\n<li style=\"list-style-type: none\">\n<ol>\n<li>Portal for ArcGIS Security 2024 Update 2 Patch.<\/li>\n<li><a href=\"https:\/\/community.esri.com\/t5\/esri-software-security-privacy-blog\/securing-arcgis-enterprise-s-help-documentation\/ba-p\/885851\">Secure ArcGIS Enterprise\u2019s Help Documentation.<\/a><\/li>\n<\/ol>\n<\/li>\n<\/ol>\n<\/li>\n<\/ul>\n<p>Unvalidated Redirect<\/p>\n<ul>\n<li>CVE Details: CVE-2024-8148<\/li>\n<li>CWE-601 URL Redirection to Untrusted Site (&#8216;Open Redirect&#8217;)<\/li>\n<li>Base CVSS 3.1: <a href=\"https:\/\/www.first.org\/cvss\/calculator\/3.1#CVSS:3.1\/AV:N\/AC:L\/PR:N\/UI:R\/S:C\/C:L\/I:L\/A:N\">6.1<\/a> \u00a0Base CVSS 4.0: <a href=\"https:\/\/www.first.org\/cvss\/calculator\/4.0#CVSS:4.0\/AV:N\/AC:L\/AT:N\/PR:N\/UI:P\/VC:L\/VI:L\/VA:N\/SC:L\/SI:L\/SA:N\">5.3<\/a><\/li>\n<\/ul>\n<p>HTML Injection<\/p>\n<ul>\n<li>CVE Details: CVE-2024-38039<\/li>\n<li>CWE-74 Improper Neutralization of Special Elements in Output Used by a Downstream Component (&#8216;Injection&#8217;)<\/li>\n<li>Base CVSS 3.1: <a href=\"https:\/\/www.first.org\/cvss\/calculator\/3.1#CVSS:3.1\/AV:N\/AC:L\/PR:L\/UI:R\/S:C\/C:L\/I:L\/A:N\">5.4<\/a> \u00a0Base CVSS 4.0: <a href=\"https:\/\/www.first.org\/cvss\/calculator\/4.0#CVSS:4.0\/AV:N\/AC:L\/AT:N\/PR:L\/UI:P\/VC:L\/VI:L\/VA:N\/SC:L\/SI:L\/SA:N\">5.1<\/a><\/li>\n<\/ul>\n<p>Cross Site Scripting \u2013 (XSS)<\/p>\n<ul>\n<li>CVE Details: CVE-2024-25694<\/li>\n<li>CWE-79 Improper Neutralization of Input During Web Page Generation<\/li>\n<li>Base CVSS 3.1: <a href=\"https:\/\/www.first.org\/cvss\/calculator\/3.1#CVSS:3.1\/AV:N\/AC:L\/PR:H\/UI:R\/S:C\/C:L\/I:L\/A:N\">4.8<\/a>\u00a0 Base CVSS 4.0: <a href=\"https:\/\/www.first.org\/cvss\/calculator\/4.0#CVSS:4.0\/AV:N\/AC:L\/AT:N\/PR:H\/UI:P\/VC:L\/VI:L\/VA:N\/SC:L\/SI:L\/SA:N\">4.8<\/a><\/li>\n<\/ul>\n<p>Cross Site Scripting \u2013 (XSS)<\/p>\n<ul>\n<li>CVE Details: CVE-2024-25701<\/li>\n<li>CWE-79 Improper Neutralization of Input During Web Page Generation<\/li>\n<li>Base CVSS 3.1: <a href=\"https:\/\/www.first.org\/cvss\/calculator\/3.1#CVSS:3.1\/AV:N\/AC:L\/PR:H\/UI:R\/S:C\/C:L\/I:L\/A:N\">4.8<\/a> \u00a0Base CVSS 4.0: <a href=\"https:\/\/www.first.org\/cvss\/calculator\/4.0#CVSS:4.0\/AV:N\/AC:L\/AT:N\/PR:H\/UI:P\/VC:L\/VI:L\/VA:N\/SC:L\/SI:L\/SA:N\">4.8<\/a><\/li>\n<\/ul>\n<p>Cross Site Scripting \u2013 (XSS)<\/p>\n<ul>\n<li>CVE Details: CVE-2024-25702<\/li>\n<li>CWE-79 Improper Neutralization of Input During Web Page Generation<\/li>\n<li>Base CVSS 3.1: <a href=\"https:\/\/www.first.org\/cvss\/calculator\/3.1#CVSS:3.1\/AV:N\/AC:L\/PR:H\/UI:R\/S:C\/C:L\/I:L\/A:N\">4.8<\/a> \u00a0Base CVSS 4.0: <a href=\"https:\/\/www.first.org\/cvss\/calculator\/4.0#CVSS:4.0\/AV:N\/AC:L\/AT:N\/PR:H\/UI:P\/VC:L\/VI:L\/VA:N\/SC:L\/SI:L\/SA:N\">4.8<\/a><\/li>\n<\/ul>\n<p>Cross Site Scripting \u2013 (XSS)<\/p>\n<ul>\n<li>CVE Details: CVE-2024-25707<\/li>\n<li>CWE-79 Improper Neutralization of Input During Web Page Generation<\/li>\n<li>Base CVSS 3.1: <a href=\"https:\/\/www.first.org\/cvss\/calculator\/3.1#CVSS:3.1\/AV:N\/AC:L\/PR:H\/UI:R\/S:C\/C:L\/I:L\/A:N\">4.8<\/a> \u00a0Base CVSS 4.0: <a href=\"https:\/\/www.first.org\/cvss\/calculator\/4.0#CVSS:4.0\/AV:N\/AC:L\/AT:N\/PR:H\/UI:P\/VC:L\/VI:L\/VA:N\/SC:L\/SI:L\/SA:N\">4.8<\/a><\/li>\n<\/ul>\n<p>Cross Site Scripting \u2013 (XSS)<\/p>\n<ul>\n<li>CVE Details: CVE-2024-38036<\/li>\n<li style=\"text-align: left\">CWE-79 Improper Neutralization of Input During Web Page Generation<\/li>\n<li>Base CVSS 3.1: <a href=\"https:\/\/www.first.org\/cvss\/calculator\/3.1#CVSS:3.1\/AV:N\/AC:L\/PR:L\/UI:R\/S:U\/C:L\/I:L\/A:N\">4.6<\/a> \u00a0Base CVSS 4.0: <a href=\"https:\/\/www.first.org\/cvss\/calculator\/4.0#CVSS:4.0\/AV:N\/AC:L\/AT:N\/PR:L\/UI:P\/VC:L\/VI:L\/VA:N\/SC:N\/SI:N\/SA:N\">5.1<\/a><\/li>\n<\/ul>\n<p>Cross Site Scripting \u2013 (XSS)<\/p>\n<ul>\n<li>CVE Details: CVE-2024-8149<\/li>\n<li>CWE-79 Improper Neutralization of Input During Web Page Generation<\/li>\n<li>Base CVSS 3.1: <a href=\"https:\/\/www.first.org\/cvss\/calculator\/3.1#CVSS:3.1\/AV:N\/AC:L\/PR:L\/UI:R\/S:U\/C:L\/I:L\/A:N\">4.6<\/a>\u00a0 Base CVSS 4.0: <a href=\"https:\/\/www.first.org\/cvss\/calculator\/4.0#CVSS:4.0\/AV:N\/AC:L\/AT:N\/PR:L\/UI:P\/VC:L\/VI:L\/VA:N\/SC:N\/SI:N\/SA:N\">5.1<\/a><\/li>\n<\/ul>\n"}],"related_articles":"","card_image":"https:\/\/www.esri.com\/arcgis-blog\/app\/uploads\/2021\/07\/SA-Portal.gif","wide_image":false,"show_article_image":false},"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v25.9 (Yoast SEO v25.9) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Portal for ArcGIS Security 2024 Update 2 Released<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.esri.com\/arcgis-blog\/products\/trust-arcgis\/administration\/portal-for-arcgis-security-2024-update-2\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Portal for ArcGIS Security 2024 Update 2 Released\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.esri.com\/arcgis-blog\/products\/trust-arcgis\/administration\/portal-for-arcgis-security-2024-update-2\" \/>\n<meta property=\"og:site_name\" content=\"ArcGIS Blog\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/esrigis\/\" \/>\n<meta property=\"article:modified_time\" content=\"2025-12-22T17:40:57+00:00\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:site\" content=\"@ESRI\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":[\"Article\",\"BlogPosting\"],\"@id\":\"https:\/\/www.esri.com\/arcgis-blog\/products\/trust-arcgis\/administration\/portal-for-arcgis-security-2024-update-2#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.esri.com\/arcgis-blog\/products\/trust-arcgis\/administration\/portal-for-arcgis-security-2024-update-2\"},\"author\":{\"name\":\"Mark Bierman\",\"@id\":\"https:\/\/www.esri.com\/arcgis-blog\/#\/schema\/person\/928a9a9a1a21dc0cf370b54b135e73ed\"},\"headline\":\"Portal for ArcGIS Security 2024 Update 2 Released\",\"datePublished\":\"2025-01-14T20:00:17+00:00\",\"dateModified\":\"2025-12-22T17:40:57+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.esri.com\/arcgis-blog\/products\/trust-arcgis\/administration\/portal-for-arcgis-security-2024-update-2\"},\"wordCount\":6,\"publisher\":{\"@id\":\"https:\/\/www.esri.com\/arcgis-blog\/#organization\"},\"keywords\":[\"ArcGIS Trust Center\",\"CVE\",\"Security\",\"SSAMLYMLGP\"],\"articleSection\":[\"Administration\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.esri.com\/arcgis-blog\/products\/trust-arcgis\/administration\/portal-for-arcgis-security-2024-update-2\",\"url\":\"https:\/\/www.esri.com\/arcgis-blog\/products\/trust-arcgis\/administration\/portal-for-arcgis-security-2024-update-2\",\"name\":\"Portal for ArcGIS Security 2024 Update 2 Released\",\"isPartOf\":{\"@id\":\"https:\/\/www.esri.com\/arcgis-blog\/#website\"},\"datePublished\":\"2025-01-14T20:00:17+00:00\",\"dateModified\":\"2025-12-22T17:40:57+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/www.esri.com\/arcgis-blog\/products\/trust-arcgis\/administration\/portal-for-arcgis-security-2024-update-2#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.esri.com\/arcgis-blog\/products\/trust-arcgis\/administration\/portal-for-arcgis-security-2024-update-2\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.esri.com\/arcgis-blog\/products\/trust-arcgis\/administration\/portal-for-arcgis-security-2024-update-2#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.esri.com\/arcgis-blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Portal for ArcGIS Security 2024 Update 2 Released\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.esri.com\/arcgis-blog\/#website\",\"url\":\"https:\/\/www.esri.com\/arcgis-blog\/\",\"name\":\"ArcGIS Blog\",\"description\":\"Get insider info from Esri product teams\",\"publisher\":{\"@id\":\"https:\/\/www.esri.com\/arcgis-blog\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.esri.com\/arcgis-blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.esri.com\/arcgis-blog\/#organization\",\"name\":\"Esri\",\"url\":\"https:\/\/www.esri.com\/arcgis-blog\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.esri.com\/arcgis-blog\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.esri.com\/arcgis-blog\/app\/uploads\/2018\/04\/Esri.png\",\"contentUrl\":\"https:\/\/www.esri.com\/arcgis-blog\/app\/uploads\/2018\/04\/Esri.png\",\"width\":400,\"height\":400,\"caption\":\"Esri\"},\"image\":{\"@id\":\"https:\/\/www.esri.com\/arcgis-blog\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/esrigis\/\",\"https:\/\/x.com\/ESRI\",\"https:\/\/www.linkedin.com\/company\/5311\/\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.esri.com\/arcgis-blog\/#\/schema\/person\/928a9a9a1a21dc0cf370b54b135e73ed\",\"name\":\"Mark Bierman\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.esri.com\/arcgis-blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/www.esri.com\/arcgis-blog\/app\/uploads\/2023\/06\/softwaresecurity-213x200.png\",\"contentUrl\":\"https:\/\/www.esri.com\/arcgis-blog\/app\/uploads\/2023\/06\/softwaresecurity-213x200.png\",\"caption\":\"Mark Bierman\"},\"url\":\"\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Portal for ArcGIS Security 2024 Update 2 Released","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.esri.com\/arcgis-blog\/products\/trust-arcgis\/administration\/portal-for-arcgis-security-2024-update-2","og_locale":"en_US","og_type":"article","og_title":"Portal for ArcGIS Security 2024 Update 2 Released","og_url":"https:\/\/www.esri.com\/arcgis-blog\/products\/trust-arcgis\/administration\/portal-for-arcgis-security-2024-update-2","og_site_name":"ArcGIS Blog","article_publisher":"https:\/\/www.facebook.com\/esrigis\/","article_modified_time":"2025-12-22T17:40:57+00:00","twitter_card":"summary_large_image","twitter_site":"@ESRI","twitter_misc":{"Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":["Article","BlogPosting"],"@id":"https:\/\/www.esri.com\/arcgis-blog\/products\/trust-arcgis\/administration\/portal-for-arcgis-security-2024-update-2#article","isPartOf":{"@id":"https:\/\/www.esri.com\/arcgis-blog\/products\/trust-arcgis\/administration\/portal-for-arcgis-security-2024-update-2"},"author":{"name":"Mark Bierman","@id":"https:\/\/www.esri.com\/arcgis-blog\/#\/schema\/person\/928a9a9a1a21dc0cf370b54b135e73ed"},"headline":"Portal for ArcGIS Security 2024 Update 2 Released","datePublished":"2025-01-14T20:00:17+00:00","dateModified":"2025-12-22T17:40:57+00:00","mainEntityOfPage":{"@id":"https:\/\/www.esri.com\/arcgis-blog\/products\/trust-arcgis\/administration\/portal-for-arcgis-security-2024-update-2"},"wordCount":6,"publisher":{"@id":"https:\/\/www.esri.com\/arcgis-blog\/#organization"},"keywords":["ArcGIS Trust Center","CVE","Security","SSAMLYMLGP"],"articleSection":["Administration"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.esri.com\/arcgis-blog\/products\/trust-arcgis\/administration\/portal-for-arcgis-security-2024-update-2","url":"https:\/\/www.esri.com\/arcgis-blog\/products\/trust-arcgis\/administration\/portal-for-arcgis-security-2024-update-2","name":"Portal for ArcGIS Security 2024 Update 2 Released","isPartOf":{"@id":"https:\/\/www.esri.com\/arcgis-blog\/#website"},"datePublished":"2025-01-14T20:00:17+00:00","dateModified":"2025-12-22T17:40:57+00:00","breadcrumb":{"@id":"https:\/\/www.esri.com\/arcgis-blog\/products\/trust-arcgis\/administration\/portal-for-arcgis-security-2024-update-2#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.esri.com\/arcgis-blog\/products\/trust-arcgis\/administration\/portal-for-arcgis-security-2024-update-2"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.esri.com\/arcgis-blog\/products\/trust-arcgis\/administration\/portal-for-arcgis-security-2024-update-2#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.esri.com\/arcgis-blog\/"},{"@type":"ListItem","position":2,"name":"Portal for ArcGIS Security 2024 Update 2 Released"}]},{"@type":"WebSite","@id":"https:\/\/www.esri.com\/arcgis-blog\/#website","url":"https:\/\/www.esri.com\/arcgis-blog\/","name":"ArcGIS Blog","description":"Get insider info from Esri product teams","publisher":{"@id":"https:\/\/www.esri.com\/arcgis-blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.esri.com\/arcgis-blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.esri.com\/arcgis-blog\/#organization","name":"Esri","url":"https:\/\/www.esri.com\/arcgis-blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.esri.com\/arcgis-blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.esri.com\/arcgis-blog\/app\/uploads\/2018\/04\/Esri.png","contentUrl":"https:\/\/www.esri.com\/arcgis-blog\/app\/uploads\/2018\/04\/Esri.png","width":400,"height":400,"caption":"Esri"},"image":{"@id":"https:\/\/www.esri.com\/arcgis-blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/esrigis\/","https:\/\/x.com\/ESRI","https:\/\/www.linkedin.com\/company\/5311\/"]},{"@type":"Person","@id":"https:\/\/www.esri.com\/arcgis-blog\/#\/schema\/person\/928a9a9a1a21dc0cf370b54b135e73ed","name":"Mark Bierman","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.esri.com\/arcgis-blog\/#\/schema\/person\/image\/","url":"https:\/\/www.esri.com\/arcgis-blog\/app\/uploads\/2023\/06\/softwaresecurity-213x200.png","contentUrl":"https:\/\/www.esri.com\/arcgis-blog\/app\/uploads\/2023\/06\/softwaresecurity-213x200.png","caption":"Mark Bierman"},"url":""}]}},"text_date":"January 14, 2025","author_name":"Multiple Authors","author_page":"https:\/\/www.esri.com\/arcgis-blog\/products\/trust-arcgis\/administration\/portal-for-arcgis-security-2024-update-2","custom_image":"https:\/\/www.esri.com\/arcgis-blog\/app\/uploads\/2025\/08\/Newsroom-Keyart-Wide-1920-x-1080.jpg","primary_product":"ArcGIS Trust Center","tag_data":[{"term_id":24081,"name":"ArcGIS Trust Center","slug":"ssamymlgp","term_group":0,"term_taxonomy_id":24081,"taxonomy":"post_tag","description":"","parent":0,"count":96,"filter":"raw"},{"term_id":759222,"name":"CVE","slug":"cve","term_group":0,"term_taxonomy_id":759222,"taxonomy":"post_tag","description":"","parent":0,"count":32,"filter":"raw"},{"term_id":24071,"name":"Security","slug":"security","term_group":0,"term_taxonomy_id":24071,"taxonomy":"post_tag","description":"","parent":0,"count":126,"filter":"raw"},{"term_id":241722,"name":"SSAMLYMLGP","slug":"ssamlymlgp","term_group":0,"term_taxonomy_id":241722,"taxonomy":"post_tag","description":"","parent":0,"count":25,"filter":"raw"}],"category_data":[{"term_id":37501,"name":"Administration","slug":"administration","term_group":0,"term_taxonomy_id":37501,"taxonomy":"category","description":"","parent":0,"count":427,"filter":"raw"}],"product_data":[{"term_id":763582,"name":"ArcGIS Trust Center","slug":"trust-arcgis","term_group":0,"term_taxonomy_id":763582,"taxonomy":"product","description":"Reserved for articles authored by the ArcGIS Trust Center team","parent":36981,"count":89,"filter":"raw"}],"primary_product_link":"https:\/\/www.esri.com\/arcgis-blog\/?s=#&products=trust-arcgis","_links":{"self":[{"href":"https:\/\/www.esri.com\/arcgis-blog\/wp-json\/wp\/v2\/blog\/2374752","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.esri.com\/arcgis-blog\/wp-json\/wp\/v2\/blog"}],"about":[{"href":"https:\/\/www.esri.com\/arcgis-blog\/wp-json\/wp\/v2\/types\/blog"}],"author":[{"embeddable":true,"href":"https:\/\/www.esri.com\/arcgis-blog\/wp-json\/wp\/v2\/users\/136891"}],"replies":[{"embeddable":true,"href":"https:\/\/www.esri.com\/arcgis-blog\/wp-json\/wp\/v2\/comments?post=2374752"}],"version-history":[{"count":0,"href":"https:\/\/www.esri.com\/arcgis-blog\/wp-json\/wp\/v2\/blog\/2374752\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.esri.com\/arcgis-blog\/wp-json\/wp\/v2\/media?parent=2374752"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.esri.com\/arcgis-blog\/wp-json\/wp\/v2\/categories?post=2374752"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.esri.com\/arcgis-blog\/wp-json\/wp\/v2\/tags?post=2374752"},{"taxonomy":"industry","embeddable":true,"href":"https:\/\/www.esri.com\/arcgis-blog\/wp-json\/wp\/v2\/industry?post=2374752"},{"taxonomy":"product","embeddable":true,"href":"https:\/\/www.esri.com\/arcgis-blog\/wp-json\/wp\/v2\/product?post=2374752"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}