Vulnerabilities > Perforce > Critical

DATE CVE VULNERABILITY TITLE RISK
2024-07-30 CVE-2024-3930 XXE vulnerability in Perforce Akana API
In versions of Akana API Platform prior to 2024.1.0 a flaw resulting in XML External Entity (XXE) was discovered.
network
low complexity
perforce CWE-611
critical
9.8
2023-11-08 CVE-2023-45849 Code Injection vulnerability in Perforce Helix Core
An arbitrary code execution which results in privilege escalation was discovered in Helix Core versions prior to 2023.2.
network
low complexity
perforce CWE-94
critical
9.8
2007-01-08 CVE-2007-0100 Remote Security vulnerability in Perforce Client
The Perforce client does not restrict the set of files that it overwrites upon receiving a request from the server, which allows remote attackers to overwrite arbitrary files by modifying the client config file on the server, or by operating a malicious server.
network
low complexity
perforce
critical
10.0