FKIE_CVE-2025-1068

Vulnerability from fkie_nvd - Published: 2025-02-25 17:15 - Updated: 2025-06-20 19:48
Severity ?
7.3 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Summary
There is an untrusted search path vulnerability in Esri ArcGIS AllSource 1.2 and 1.3 that may allow a low privileged attacker with write privileges to the local file system to introduce a malicious executable to the filesystem. When the victim performs a specific action using ArcGIS AllSource, the file could execute and run malicious commands under the context of the victim. This issue is corrected in ArcGIS AllSource 1.2.1 and 1.3.1.
References
psirt@esri.comhttps://www.esri.com/arcgis-blog/products/administration/administration/arcgis-pro-and-arcgis-allsource-patches-address-high-severity-vulnerabilitiesVendor Advisory
Impacted products
Vendor Product Version
esri arcgis_allsource 1.2
esri arcgis_allsource 1.3
esri arcgis_pro 3.3
esri arcgis_pro 3.4
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:esri:arcgis_allsource:1.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "DF0AC615-79ED-44D1-836F-FF939AC4D1D2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:esri:arcgis_allsource:1.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "F612E4AF-96E8-4487-B442-E179F2078EFE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:esri:arcgis_pro:3.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "F7E64454-52CA-4472-B201-41B81D06A961",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:esri:arcgis_pro:3.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "C607134D-76F9-48A8-8246-1A2CAD479A6F",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "There is an untrusted search path vulnerability in Esri ArcGIS AllSource 1.2 and 1.3 that may allow a low privileged attacker with write privileges to the local file system to introduce a malicious executable to the filesystem. When the victim performs a specific action using ArcGIS AllSource, the file could execute and run malicious commands under the context of the victim. This issue is corrected in ArcGIS AllSource 1.2.1 and 1.3.1."
    },
    {
      "lang": "es",
      "value": "Existe una vulnerabilidad de ruta de b\u00fasqueda no confiable en Esri ArcGIS AllSource 1.2 y 1.3 que puede permitir que un atacante con pocos privilegios y con privilegios de escritura en el sistema de archivos local introduzca un ejecutable malicioso en el sistema de archivos. Cuando la v\u00edctima realiza una acci\u00f3n espec\u00edfica con ArcGIS AllSource, el archivo podr\u00eda ejecutar comandos maliciosos en el contexto de la v\u00edctima. Este problema se corrigi\u00f3 en ArcGIS AllSource 1.2.1 y 1.3.1."
    }
  ],
  "id": "CVE-2025-1068",
  "lastModified": "2025-06-20T19:48:30.127",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.3,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.3,
        "impactScore": 5.9,
        "source": "psirt@esri.com",
        "type": "Secondary"
      }
    ]
  },
  "published": "2025-02-25T17:15:13.890",
  "references": [
    {
      "source": "psirt@esri.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://www.esri.com/arcgis-blog/products/administration/administration/arcgis-pro-and-arcgis-allsource-patches-address-high-severity-vulnerabilities"
    }
  ],
  "sourceIdentifier": "psirt@esri.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-426"
        }
      ],
      "source": "psirt@esri.com",
      "type": "Secondary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.