CVE-2024-25690
published 2024-04-04CVE-2024-25690: There is an HTML injection vulnerability in Esri Portal for ArcGIS versions 11.1 and below that may allow a remote, unauthenticated attacker to create a…
PriorityP426medium4.7CVSS 3.1
AVNACLPRNUIRSCCNILAN
EPSS
0.47%
37.1th percentile
There is an HTML injection vulnerability in Esri Portal for ArcGIS versions 11.1 and below that may allow a remote, unauthenticated attacker to create a crafted link which when clicked could render arbitrary HTML in the victim’s browser.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| esri | arcgis_enterprise_web_app_builder | all – 11.1 | — |
| esri | portal_for_arcgis | <= 11.1 | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Suricata
ET WEB_SPECIFIC_APPS Apache 2.4.0 -> 2.4.55 HTTP Smuggling Attempt M6 (CVE-2023-25690)
suricata·2024-10-03·CVSS 9.8
CVE-2023-25690 [CRITICAL] ET WEB_SPECIFIC_APPS Apache 2.4.0 -> 2.4.55 HTTP Smuggling Attempt M6 (CVE-2023-25690)
ET WEB_SPECIFIC_APPS Apache 2.4.0 -> 2.4.55 HTTP Smuggling Attempt M6 (CVE-2023-25690)
Rule: alert http any any -> [$HOME_NET,$HTTP_SERVERS] any (msg:"ET WEB_SPECIFIC_APPS Apache 2.4.0 -> 2.4.55 HTTP Smuggling Attempt M6 (CVE-2023-25690)"; flow:established,to_server; http.request_body; content:"CONNECT|20 2f|"; startswith; fast_pattern; reference:url,attackerkb.com/topics/0Uka1VHsPO/cve-2023-25690/rapid7-analysis; reference:cve,2023-25690; classtype:web-application-attack; sid:2056428; rev:1; metadata:affected_product Apache_HTTP_server, attack_target Server, created_at 2024_10_03, cve CVE_2023_25690, deployment Perimeter, deployment Internal, confidence Medium, signature_severity Major, tag Exploit, updated_at 2024_10_03, mitre_tactic_id TA0001, mitre_tactic_name Initial_Access, mitre_te
Suricata
ET WEB_SPECIFIC_APPS Apache 2.4.0 -> 2.4.55 HTTP Smuggling Attempt M7 (CVE-2023-25690)
suricata·2024-10-03·CVSS 9.8
CVE-2023-25690 [CRITICAL] ET WEB_SPECIFIC_APPS Apache 2.4.0 -> 2.4.55 HTTP Smuggling Attempt M7 (CVE-2023-25690)
ET WEB_SPECIFIC_APPS Apache 2.4.0 -> 2.4.55 HTTP Smuggling Attempt M7 (CVE-2023-25690)
Rule: alert http any any -> [$HOME_NET,$HTTP_SERVERS] any (msg:"ET WEB_SPECIFIC_APPS Apache 2.4.0 -> 2.4.55 HTTP Smuggling Attempt M7 (CVE-2023-25690)"; flow:established,to_server; http.request_body; content:"OPTIONS|20 2f|"; startswith; fast_pattern; reference:url,attackerkb.com/topics/0Uka1VHsPO/cve-2023-25690/rapid7-analysis; reference:cve,2023-25690; classtype:web-application-attack; sid:2056429; rev:1; metadata:affected_product Apache_HTTP_server, attack_target Server, created_at 2024_10_03, cve CVE_2023_25690, deployment Perimeter, deployment Internal, confidence Medium, signature_severity Major, tag Exploit, updated_at 2024_10_03, mitre_tactic_id TA0001, mitre_tactic_name Initial_Access, mitre_te
Suricata
ET WEB_SPECIFIC_APPS Apache 2.4.0 -> 2.4.55 HTTP Smuggling Attempt M5 (CVE-2023-25690)
suricata·2024-10-03·CVSS 9.8
CVE-2023-25690 [CRITICAL] ET WEB_SPECIFIC_APPS Apache 2.4.0 -> 2.4.55 HTTP Smuggling Attempt M5 (CVE-2023-25690)
ET WEB_SPECIFIC_APPS Apache 2.4.0 -> 2.4.55 HTTP Smuggling Attempt M5 (CVE-2023-25690)
Rule: alert http any any -> [$HOME_NET,$HTTP_SERVERS] any (msg:"ET WEB_SPECIFIC_APPS Apache 2.4.0 -> 2.4.55 HTTP Smuggling Attempt M5 (CVE-2023-25690)"; flow:established,to_server; http.request_body; content:"DELETE|20 2f|"; startswith; fast_pattern; reference:url,attackerkb.com/topics/0Uka1VHsPO/cve-2023-25690/rapid7-analysis; reference:cve,2023-25690; classtype:web-application-attack; sid:2056427; rev:1; metadata:affected_product Apache_HTTP_server, attack_target Server, created_at 2024_10_03, cve CVE_2023_25690, deployment Perimeter, deployment Internal, confidence Medium, signature_severity Major, tag Exploit, updated_at 2024_10_03, mitre_tactic_id TA0001, mitre_tactic_name Initial_Access, mitre_tec
Suricata
ET WEB_SPECIFIC_APPS Apache 2.4.0 -> 2.4.55 HTTP Smuggling Attempt M1 (CVE-2023-25690)
suricata·2024-10-03·CVSS 9.8
CVE-2023-25690 [CRITICAL] ET WEB_SPECIFIC_APPS Apache 2.4.0 -> 2.4.55 HTTP Smuggling Attempt M1 (CVE-2023-25690)
ET WEB_SPECIFIC_APPS Apache 2.4.0 -> 2.4.55 HTTP Smuggling Attempt M1 (CVE-2023-25690)
Rule: alert http any any -> [$HOME_NET,$HTTP_SERVERS] any (msg:"ET WEB_SPECIFIC_APPS Apache 2.4.0 -> 2.4.55 HTTP Smuggling Attempt M1 (CVE-2023-25690)"; flow:established,to_server; http.request_body; content:"GET|20 2f|"; startswith; fast_pattern; reference:url,attackerkb.com/topics/0Uka1VHsPO/cve-2023-25690/rapid7-analysis; reference:cve,2023-25690; classtype:web-application-attack; sid:2056423; rev:1; metadata:affected_product Apache_HTTP_server, attack_target Server, created_at 2024_10_03, cve CVE_2023_25690, deployment Perimeter, deployment Internal, confidence Medium, signature_severity Major, tag Exploit, updated_at 2024_10_03, mitre_tactic_id TA0001, mitre_tactic_name Initial_Access, mitre_techni
Suricata
ET WEB_SPECIFIC_APPS Apache 2.4.0 -> 2.4.55 HTTP Smuggling Attempt M2 (CVE-2023-25690)
suricata·2024-10-03·CVSS 9.8
CVE-2023-25690 [CRITICAL] ET WEB_SPECIFIC_APPS Apache 2.4.0 -> 2.4.55 HTTP Smuggling Attempt M2 (CVE-2023-25690)
ET WEB_SPECIFIC_APPS Apache 2.4.0 -> 2.4.55 HTTP Smuggling Attempt M2 (CVE-2023-25690)
Rule: alert http any any -> [$HOME_NET,$HTTP_SERVERS] any (msg:"ET WEB_SPECIFIC_APPS Apache 2.4.0 -> 2.4.55 HTTP Smuggling Attempt M2 (CVE-2023-25690)"; flow:established,to_server; http.request_body; content:"POST|20 2f|"; startswith; fast_pattern; reference:url,attackerkb.com/topics/0Uka1VHsPO/cve-2023-25690/rapid7-analysis; reference:cve,2023-25690; classtype:web-application-attack; sid:2056424; rev:1; metadata:affected_product Apache_HTTP_server, attack_target Server, created_at 2024_10_03, cve CVE_2023_25690, deployment Perimeter, deployment Internal, confidence Medium, signature_severity Major, tag Exploit, updated_at 2024_10_03, mitre_tactic_id TA0001, mitre_tactic_name Initial_Access, mitre_techn
Suricata
ET WEB_SPECIFIC_APPS Apache 2.4.0 -> 2.4.55 HTTP Smuggling Attempt M4 (CVE-2023-25690)
suricata·2024-10-03·CVSS 9.8
CVE-2023-25690 [CRITICAL] ET WEB_SPECIFIC_APPS Apache 2.4.0 -> 2.4.55 HTTP Smuggling Attempt M4 (CVE-2023-25690)
ET WEB_SPECIFIC_APPS Apache 2.4.0 -> 2.4.55 HTTP Smuggling Attempt M4 (CVE-2023-25690)
Rule: alert http any any -> [$HOME_NET,$HTTP_SERVERS] any (msg:"ET WEB_SPECIFIC_APPS Apache 2.4.0 -> 2.4.55 HTTP Smuggling Attempt M4 (CVE-2023-25690)"; flow:established,to_server; http.request_body; content:"PUT|20 2f|"; startswith; fast_pattern; reference:url,attackerkb.com/topics/0Uka1VHsPO/cve-2023-25690/rapid7-analysis; reference:cve,2023-25690; classtype:web-application-attack; sid:2056426; rev:1; metadata:affected_product Apache_HTTP_server, attack_target Server, created_at 2024_10_03, cve CVE_2023_25690, deployment Perimeter, deployment Internal, confidence Medium, signature_severity Major, tag Exploit, updated_at 2024_10_03, mitre_tactic_id TA0001, mitre_tactic_name Initial_Access, mitre_techni
Suricata
ET WEB_SPECIFIC_APPS Apache 2.4.0 -> 2.4.55 HTTP Smuggling Attempt M3 (CVE-2023-25690)
suricata·2024-10-03·CVSS 9.8
CVE-2023-25690 [CRITICAL] ET WEB_SPECIFIC_APPS Apache 2.4.0 -> 2.4.55 HTTP Smuggling Attempt M3 (CVE-2023-25690)
ET WEB_SPECIFIC_APPS Apache 2.4.0 -> 2.4.55 HTTP Smuggling Attempt M3 (CVE-2023-25690)
Rule: alert http any any -> [$HOME_NET,$HTTP_SERVERS] any (msg:"ET WEB_SPECIFIC_APPS Apache 2.4.0 -> 2.4.55 HTTP Smuggling Attempt M3 (CVE-2023-25690)"; flow:established,to_server; http.request_body; content:"HEAD|20 2f|"; startswith; fast_pattern; reference:url,attackerkb.com/topics/0Uka1VHsPO/cve-2023-25690/rapid7-analysis; reference:cve,2023-25690; classtype:web-application-attack; sid:2056425; rev:1; metadata:affected_product Apache_HTTP_server, attack_target Server, created_at 2024_10_03, cve CVE_2023_25690, deployment Perimeter, deployment Internal, confidence Medium, signature_severity Major, tag Exploit, updated_at 2024_10_03, mitre_tactic_id TA0001, mitre_tactic_name Initial_Access, mitre_techn
No public exploits indexed.
No writeups or analysis indexed.
2024-04-04
Published