Vulnerabilities > Perforce > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-07-30 CVE-2024-5250 Information Exposure Through an Error Message vulnerability in Perforce Akana API
In versions of Akana API Platform prior to 2024.1.0 overly verbose errors can be found in SAML integrations
network
low complexity
perforce CWE-209
5.3
2021-04-13 CVE-2021-28973 XXE vulnerability in Perforce Helix ALM 2020.3.1
The XML Import functionality of the Administration console in Perforce Helix ALM 2020.3.1 Build 22 accepts XML input data that is parsed by insecurely configured software components, leading to XXE attacks.
network
low complexity
perforce CWE-611
4.9
2020-02-12 CVE-2013-1410 Cross-site Scripting vulnerability in Perforce P4Web 2011.1/2012.1
Perforce P4web 2011.1 and 2012.1 has multiple XSS vulnerabilities
network
low complexity
perforce CWE-79
6.1
2018-04-05 CVE-2018-1000147 Information Exposure vulnerability in Perforce
An exposure of sensitive information vulnerability exists in Jenkins Perforce Plugin version 1.3.36 and older in PerforcePasswordEncryptor.java that allows attackers with insufficient permission to obtain Perforce passwords configured in jobs to obtain them
network
low complexity
perforce CWE-200
6.5