Vulnerability Description
A SQL Injection vulnerability exists in Esri ArcGIS Server versions 11.3, 11.4 and 11.5 on Windows, Linux and Kubernetes. This vulnerability allows a remote, unauthenticated attacker to execute arbitrary SQL commands via a specific ArcGIS Feature Service operation. Successful exploitation can potentially result in unauthorized access, modification, or deletion of data from the underlying Enterprise Geodatabase.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Esri | Arcgis Server | >= 11.3, <= 11.5 |
| Kubernetes | Kubernetes | - |
| Linux | Linux Kernel | - |
| Microsoft | Windows | - |
Related Weaknesses (CWE)
References
- https://www.esri.com/arcgis-blog/products/trust-arcgis/administration/arcgis-serMitigationVendor Advisory
FAQ
What is CVE-2025-57870?
CVE-2025-57870 is a vulnerability with a CVSS score of 10.0 (CRITICAL). A SQL Injection vulnerability exists in Esri ArcGIS Server versions 11.3, 11.4 and 11.5 on Windows, Linux and Kubernetes. This vulnerability allows a remote, unauthenticated attacker to execute arbitr...
How severe is CVE-2025-57870?
CVE-2025-57870 has been rated CRITICAL with a CVSS base score of 10.0/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2025-57870?
Check the references section above for vendor advisories and patch information. Affected products include: Esri Arcgis Server, Kubernetes Kubernetes, Linux Linux Kernel, Microsoft Windows.