A vulnerability was found in Esri ArcGIS Server up to 12.0 and classified as critical . The affected element is an unknown function of the component Endpoint . Executing a manipulation can lead to improper authentication. This vulnerability is tracked as CVE-2026-2812 . The attack can be launched remotely. No exploit exists.