Skip To Content

ArcGIS Security

This section provides an overview of security capabilities available for the ArcGIS platform components and current best practices. The ArcGIS platform enables customers to leverage the required GIS capabilities with the assurance that Esri continues to follow a robust and effective security framework. Esri is continually advancing the security of the entire mapping platform including:

  • Cloud: ArcGIS Online, Esri Managed Cloud Services (EMCS) Advanced Plus
  • Enterprise: ArcGIS Server, Portal for ArcGIS
  • Desktop: ArcGIS for Desktop, ArcGIS Pro
  • Mobile: ArcGIS Mobile Apps

To be notified about the latest security related information such as vulnerabilities, security patches and announcements, subscribe to the RSS feed associated with the security blog.

Documents and Presentations

For popular documents and presentations to learn about security, privacy and compliance for the ArcGIS Platform, please see Documents.

A note about security updates

Moderate to high risk vulnerabilities are addressed as part of standard security patches, which are released for the last minor release in a series of ArcGIS products that are still in mainstream support. Risk is determined through internal scoring using the CVSSv3 formula.

Critical, proven exploitable vulnerabilities are rare with our products. When a critical, proven exploitable vulnerability is discovered in Esri software, Esri may take the unusual action of releasing a patch for all currently supported versions of affected ArcGIS software.