Lucene search
K

21 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-15620

Malware in sbrugna...

4.9CVSS5.3AI score0.00891EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-54412

Malicious code in bioql PyPI...

6.3CVSS6.6AI score0.00386EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2024-32561

Malicious code in bioql PyPI...

2CVSS6.6AI score0.00612EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:30 a.m.6 views

CVE-2024-3995

In Helix ALM versions prior to 2024.2.0, a local command injection was identified. Reported by Bryan Riggins...

2CVSS7.3AI score0.00612EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/04/17 5:6 p.m.15 views

CVE-2024-11084

Helix ALM prior to 2025.1 returns distinct error responses during authentication, allowing an attacker to determine whether a username exists...

6.3CVSS6.8AI score0.00386EPSS
Exploits0References1
NVD
NVD
added 2025/04/15 4:15 p.m.10 views

CVE-2024-11084

Helix ALM prior to 2025.1 returns distinct error responses during authentication, allowing an attacker to determine whether a username exists...

6.3CVSS0.00386EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/15 3:34 p.m.16 views

CVE-2024-11084 Potential Username Enumeration in Helix ALM

Helix ALM prior to 2025.1 returns distinct error responses during authentication, allowing an attacker to determine whether a username exists...

6.3CVSS0.00386EPSS
Exploits0References1
CVE
CVE
added 2025/04/15 3:34 p.m.45 views

CVE-2024-11084

CVE-2024-11084 affects Perforce Helix ALM prior to 2025.1. The issue is that authentication returns distinct error responses, enabling an attacker to determine whether a username exists (username enumeration). The connected sources (RH Red Hat, NVD, CVE Lists, CNNVD) corroborate the same descript...

6.3CVSS6.5AI score0.00386EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/15 3:34 p.m.12 views

CVE-2024-11084 Potential Username Enumeration in Helix ALM

Helix ALM prior to 2025.1 returns distinct error responses during authentication, allowing an attacker to determine whether a username exists...

6.3CVSS6.5AI score0.00386EPSS
Exploits0References1
NVD
NVD
added 2024/06/28 8:15 p.m.15 views

CVE-2024-3995

In Helix ALM versions prior to 2024.2.0, a local command injection was identified. Reported by Bryan Riggins...

2CVSS0.00612EPSS
Exploits0References1
CVE
CVE
added 2024/06/28 7:46 p.m.40 views

CVE-2024-3995

CVE-2024-3995 affects Perforce Helix ALM versions prior to 2024.2.0, with a local command injection vulnerability identified (reported by Bryan Riggins). Affected component: Helix ALM prior to 2024.2.0. Root cause: local command injection as described in multiple sources. Impact details are limit...

2CVSS6.9AI score0.00612EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/06/28 7:46 p.m.10 views

CVE-2024-3995 Command Injection in Helix ALM

In Helix ALM versions prior to 2024.2.0, a local command injection was identified. Reported by Bryan Riggins...

2CVSS7.3AI score0.00612EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/06/28 12:0 a.m.2 views

Perforce Helix ALM Security Vulnerability

Perforce Helix ALM is an application lifecycle management software from Perforce. A security vulnerability exists in Perforce Helix ALM versions prior to 2024.2.0 that stems from the presence of local command injection...

2CVSS6.7AI score0.00612EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/06/28 12:0 a.m.5 views

PT-2024-28752 · Perforce · Helix Alm

Name of the Vulnerable Software and Affected Versions: Helix ALM versions prior to 2024.2.0 Description: A local command injection issue was identified. The issue was reported by Bryan Riggins. Recommendations: For Helix ALM versions prior to 2024.2.0, update to version 2024.2.0 or later to resol...

2CVSS6.9AI score0.00612EPSS
Exploits0References3
NVD
NVD
added 2021/04/13 5:15 p.m.15 views

CVE-2021-28973

The XML Import functionality of the Administration console in Perforce Helix ALM 2020.3.1 Build 22 accepts XML input data that is parsed by insecurely configured software components, leading to XXE attacks...

4.9CVSS0.00891EPSS
Exploits1References1
OSV
OSV
added 2021/04/13 5:15 p.m.1 views

CVE-2021-28973

The XML Import functionality of the Administration console in Perforce Helix ALM 2020.3.1 Build 22 accepts XML input data that is parsed by insecurely configured software components, leading to XXE attacks...

4.9CVSS5.8AI score
Exploits0References1
Prion
Prion
added 2021/04/13 5:15 p.m.17 views

Input validation

The XML Import functionality of the Administration console in Perforce Helix ALM 2020.3.1 Build 22 accepts XML input data that is parsed by insecurely configured software components, leading to XXE attacks...

4CVSS5.1AI score0.00891EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/04/13 4:42 p.m.15 views

CVE-2021-28973

The XML Import functionality of the Administration console in Perforce Helix ALM 2020.3.1 Build 22 accepts XML input data that is parsed by insecurely configured software components, leading to XXE attacks...

5.5AI score0.00891EPSS
Exploits1References1
CVE
CVE
added 2021/04/13 4:42 p.m.46 views

CVE-2021-28973

CVE-2021-28973 affects Perforce Helix ALM 2020.3.1 Build 22, where the XML Import functionality processes XML input with an insecurely configured XML parser . This leads to XXE attacks . The connected Red Hat entry confirms the same description. The documents do not provide explicit exploitation ...

4.9CVSS5.1AI score0.00891EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2021/04/13 12:0 a.m.7 views

Perforce Software Perforce Helix ALM 代码问题漏洞

Perforce Software Perforce Helix ALM is an application software from Perforce Software, Inc. It provides application lifecycle management for products. A security vulnerability exists in Perforce Helix ALM 2020.3.1 Build 22, which stems from the XML Import feature accepting XML input data parsed ...

4.9CVSS5.3AI score0.00891EPSS
Exploits1References2
Rows per page
Query Builder