The Portal for ArcGIS Security 2024 Update 1 is available. Install these patches at your earliest opportunity to address these vulnerabilities.
An update regarding the ArcGIS Enterprise Sites Security Patch re-release.
The ArcGIS Server Map and Feature Service Security 2023 Update 1 Patch is now available
ArcGIS Server Security 2023 patch is now available
Esri's updated statement regarding Log4j vulnerabilities (Log4Shell) and ArcGIS products
The ArcGIS Server Security 2022 Update 2 Patch is now available for versions 11, 10.9,1, 10.9.0 10.8.1, and 10.7.1.
Review and provide feedback regarding the next generation of the ArcGIS Security & Privacy Advisor (v3)!
Status information of ArcGIS products relative to Commons-text open-source component.
https://www.esri.com/arcgis-blog/products/trust-arcgis/administration/commons-text-vulnerability/
Update of OpenSSL v3 Vulnerability and ArcGIS Products
https://www.esri.com/arcgis-blog/products/trust-arcgis/administration/openssl-v3-vulnerability/
Customers that have configured the SAML options "Enabled Signed Requests" or "Encrypt Assertion" must update their ArcGIS Online metadata file.