Vulnerabilities > Perforce > Akana API

DATE CVE VULNERABILITY TITLE RISK
2024-07-30 CVE-2024-3930 XXE vulnerability in Perforce Akana API
In versions of Akana API Platform prior to 2024.1.0 a flaw resulting in XML External Entity (XXE) was discovered.
network
low complexity
perforce CWE-611
critical
 9.8
9.8
2024-07-30 CVE-2024-5249 Authentication Bypass by Capture-replay vulnerability in Perforce Akana API
In versions of Akana API Platform prior to 2024.1.0, SAML tokens can be replayed.
network
low complexity
perforce CWE-294
7.5
7.5
2024-07-30 CVE-2024-5250 Information Exposure Through an Error Message vulnerability in Perforce Akana API
In versions of Akana API Platform prior to 2024.1.0 overly verbose errors can be found in SAML integrations
network
low complexity
perforce CWE-209
5.3
5.3