Filtered by vendor Perforce
Subscriptions
Total
28 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2008-1302 | 2 Microsoft, Perforce | 2 Windows, Perforce Server | 2024-08-07 | N/A |
| The Perforce service (p4s.exe) in Perforce Server 2007.3/143793 and earlier allows remote attackers to cause a denial of service (daemon crash) via a (1) server-DiffFile or (2) server-ReleaseFile command with a large integer value, which is used in an array initialization calculation, and leads to invalid memory access. | ||||
| CVE-2008-1338 | 1 Perforce | 1 Perforce Server | 2024-08-07 | N/A |
| The Perforce service (p4s.exe) in Perforce Server 2007.3/143793 and earlier allows remote attackers to cause a denial of service (daemon crash) via a server-DiffFile command with an integer value within a certain range, which causes a loop until all memory is exhausted. | ||||
| CVE-2008-1303 | 1 Perforce | 1 Perforce Server | 2024-08-07 | N/A |
| The Perforce service (p4s.exe) in Perforce Server 2007.3/143793 and earlier allows remote attackers to cause a denial of service (daemon crash) via a missing parameter to the (1) dm-FaultFile, (2) dm-LazyCheck, (3) dm-ResolvedFile, (4) dm-OpenFile, (5) crypto, and possibly unspecified other commands, which triggers a NULL pointer dereference. | ||||
| CVE-2013-1410 | 1 Perforce | 1 P4web | 2024-08-06 | 6.1 Medium |
| Perforce P4web 2011.1 and 2012.1 has multiple XSS vulnerabilities | ||||
| CVE-2015-8965 | 2 Oracle, Perforce | 2 Data Integrator, Jviews | 2024-08-06 | 9.8 Critical |
| Rogue Wave JViews before 8.8 patch 21 and 8.9 before patch 1 allows remote attackers to execute arbitrary Java code that exists in the classpath, such as test code or administration code. The issue exists because the ilog.views.faces.IlvFacesController servlet in jviews-framework-all.jar does not require explicit configuration of servlets that can be called. | ||||
| CVE-2021-28973 | 1 Perforce | 1 Helix Alm | 2024-08-03 | 4.9 Medium |
| The XML Import functionality of the Administration console in Perforce Helix ALM 2020.3.1 Build 22 accepts XML input data that is parsed by insecurely configured software components, leading to XXE attacks. | ||||
| CVE-2023-45849 | 1 Perforce | 1 Helix Core | 2024-08-02 | 9 Critical |
| An arbitrary code execution which results in privilege escalation was discovered in Helix Core versions prior to 2023.2. Reported by Jason Geffner. | ||||
| CVE-2024-0325 | 1 Perforce | 1 Helix Sync | 2024-08-01 | 3.6 Low |
| In Helix Sync versions prior to 2024.1, a local command injection was identified. Reported by Bryan Riggins. | ||||