{"vulnerability": "CVE-2024-51966", "sightings": [{"uuid": "a1d0b035-2849-4c35-9355-ca9c16bd0ce9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51966", "type": "seen", "source": "https://t.me/cvedetector/19416", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-51966 - ESRI ArcGIS Server Path Traversal Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-51966 \nPublished : March 3, 2025, 8:15 p.m. | 2\u00a0hours, 14\u00a0minutes ago \nDescription : There is a path traversal vulnerability in ESRI ArcGIS Server versions 10.9.1 thru 11.3.  Successful exploitation may allow a remote authenticated attacker with admin privileges to traverse the file system to access files outside of the intended directory.  There is no impact to integrity or availability due to the nature of the files that can be accessed, but there is a potential high impact to confidentiality. \nSeverity: 4.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"03 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-03T23:56:22.000000Z"}, {"uuid": "fcdd1278-b8ed-4d9d-9d98-c3336de58b80", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51966", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ljj4yhrdkl2i", "content": "", "creation_timestamp": "2025-03-03T23:44:32.290364Z"}, {"uuid": "3208b8bb-0e0d-41eb-801a-25e7fec3e1c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51966", "type": "seen", "source": "Telegram/NtTK_guijvo9MUku3M4L_QAxLHk0wDWREuTwGy5pGn_stdDJ", "content": "", "creation_timestamp": "2025-03-08T04:34:09.000000Z"}, {"uuid": "ba1cd676-2ff5-431c-b2bf-4c2db61a4442", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51966", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/11331", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-51966\n\ud83d\udd25 CVSS Score: 4.9 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N)\n\ud83d\udd39 Description: There is a path traversal vulnerability in ESRI ArcGIS Server versions 11.3 and below.  Successful exploitation may allow a remote authenticated attacker with admin privileges to traverse the file system to access files outside of the intended directory.  There is no impact to integrity or availability due to the nature of the files that can be accessed, but there is a potential high impact to confidentiality.\n\ud83d\udccf Published: 2025-03-03T19:59:14.080Z\n\ud83d\udccf Modified: 2025-04-10T19:29:07.421Z\n\ud83d\udd17 References:\n1. https://www.esri.com/arcgis-blog/products/trust-arcgis/administration/arcgis-server-security-2025-update-1-patch/", "creation_timestamp": "2025-04-10T19:49:19.000000Z"}]}