Ref# ADV2025_364 | Date: Oct 10th 2025

---

Esri published a security advisory to address a critical vulnerability in the following product on October 6, 2025. It is recommended that you take these necessary precautions by ensuring your products are always updated. 

• ArcGIS Server – versions 11.3, 11.4 and 11.5 

For more information on this update, you can follow this URL: 

• ArcGIS Server Feature Services Security Patch 

• Esri Security Advisories 

The Guyana National CIRT recommends that users and administrators review these updates and apply them where necessary. 

PDF Download: Esri Security Advisory

References 

• ESRI support  . (n.d.). Retrieved from ESRI support  https://support.esri.com/en-us/search?s=Relevance&cardtype=support_patches_updates 

• Bierman, M., & Bierman, M. (2025, October 10). ArcGIS Server Feature Services Security Patch. Retrieved from ArcGIS Blog. https://www.esri.com/arcgis-blog/products/trust-arcgis/administration/arcgis-server-feature-services-security-patch 

• Esri Security Advisory. (October 9th, 2025). Retrieved from Canadian Centre for Cyber Security. https://www.cyber.gc.ca/en/alerts-advisories/esri-security-advisory-av25-652