Lucene search
PerforceCVELIST:CVE-2023-45849HistoryNov 08, 2023 - 3:40 p.m.
CVE-2023-45849 Arbitrary Code Execution in Helix Core
2023-11-0815:40:29
CWE-94
Perforce
www.cve.org
cve-2023-45849
helix core
arbitrary code execution
privilege escalation
jason geffner
9 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
10 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
35.3%
An arbitrary code execution which results in privilege escalation was discovered in Helix Core versions prior to 2023.2. Reported by Jason Geffner.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Helix Core",
"vendor": "Helix",
"versions": [
{
"lessThan": "2023.2",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
},
{
"lessThan": "2023.1 Patch 2",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
},
{
"lessThan": "2022.2 Patch 3",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
},
{
"lessThan": "2022.1 Patch 6",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
},
{
"lessThan": "2021.2 Patch 10",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
}
]References
Related
prion
prion
Privilege escalation
2023-11-08 16:15:00
nvd
nvd
CVE-2023-45849
2023-11-08 16:15:10
cve
cve
CVE-2023-45849
2023-11-08 16:15:10
mssecure
mssecure
mmpc
mmpc
nessus
nessus
Helix Core Server < 2023.2 Multiple Vulnerabilities
2023-12-22 00:00:00
9 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
10 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
35.3%
Related for CVELIST:CVE-2023-45849