CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:S/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
82.1%
The triggers functionality in Perforce Server 2008.1 allows remote authenticated users with super privileges to execute arbitrary operating-system commands by using a “p4 client” command in conjunction with the form-in trigger script.
Vendor | Product | Version | CPE |
---|---|---|---|
perforce | perforce_server | 2008.1 | cpe:2.3:a:perforce:perforce_server:2008.1:*:*:*:*:*:*:* |