Lucene search
HistoryOct 03, 2022 - 4:21 p.m.
CVE-2010-0935
perforce
server
remote access
authenticated users
super privileges
cve-2010-0935
nvd
4.6 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:S/C:P/I:P/A:P
6.3 Medium
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
73.0%
Perforce Server 2009.2 and earlier, when the protection table is empty, allows remote authenticated users to obtain super privileges via a “p4 protect” command.
Affected configurations
Node
perforceperforce_serverRange≤2009.2
ORperforceperforce_serverMatch97.3
ORperforceperforce_serverMatch98.2
ORperforceperforce_serverMatch99.1
ORperforceperforce_serverMatch99.2
ORperforceperforce_serverMatch2000.1
ORperforceperforce_serverMatch2000.2
ORperforceperforce_serverMatch2001.1
ORperforceperforce_serverMatch2001.2
ORperforceperforce_serverMatch2002.1
ORperforceperforce_serverMatch2002.2
ORperforceperforce_serverMatch2003.1
ORperforceperforce_serverMatch2003.2
ORperforceperforce_serverMatch2004.2
ORperforceperforce_serverMatch2005.1
ORperforceperforce_serverMatch2005.2
ORperforceperforce_serverMatch2006.1
ORperforceperforce_serverMatch2006.2
ORperforceperforce_serverMatch2007.2
ORperforceperforce_serverMatch2007.3
ORperforceperforce_serverMatch2007.3_143793
ORperforceperforce_serverMatch2008.1
ORperforceperforce_serverMatch2008.2
Related
cvelist
cvelist
CVE-2010-0935
2022-10-03 16:21:12
nvd
nvd
CVE-2010-0935
2010-03-05 19:30:01
prion
prion
Command injection
2010-03-05 19:30:00
4.6 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:S/C:P/I:P/A:P
6.3 Medium
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
73.0%
Related for CVE-2010-0935