Lucene search
K

158 matches found

RedhatCVE
RedhatCVE
added 2026/05/20 7:57 a.m.11 views

CVE-2026-6902

A Remote Code Execution vulnerability in P4 Helix Core Server's Command-Line Client, prior to the 2025.2 Patch 2, has been fixed to address potential security risks...

7.7CVSS5.8AI score0.00449EPSS
Exploits0References1
NVD
NVD
added 2026/05/18 9:16 a.m.22 views

CVE-2026-6902

A Remote Code Execution vulnerability in P4 Helix Core Server's Command-Line Client, prior to the 2025.2 Patch 2, has been fixed to address potential security risks...

7.7CVSS0.00449EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/18 7:49 a.m.9 views

CVE-2026-6902 Code Injection in Perforce P4 (Helix Core)

A Remote Code Execution vulnerability in P4 Helix Core Server's Command-Line Client, prior to the 2025.2 Patch 2, has been fixed to address potential security risks...

7.7CVSS5.8AI score0.00449EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/18 7:49 a.m.15 views

EUVD-2026-30747

A vulnerability in Command-Line Client in P4 Server prior to the 2025.2 Patch 2, identified as CVE-2026-6902, has been fixed in P4 Server to address potential security risks...

7.7CVSS5.7AI score0.00449EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/18 7:49 a.m.7 views

CVE-2026-6902

A Remote Code Execution vulnerability in P4 Helix Core Server's Command-Line Client, prior to the 2025.2 Patch 2, has been fixed to address potential security risks...

7.7CVSS5.8AI score0.00449EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/12 9:31 p.m.11 views

EUVD-2026-29756

Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by a Server-Side Request Forgery SSRF vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass security measures and gain...

7.4CVSS5.8AI score0.00471EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/12 7:50 p.m.8 views

CVE-2026-34658 Adobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a high-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may...

4.8CVSS5.8AI score0.00274EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/12 7:50 p.m.131 views

CVE-2026-34650 Adobe Commerce | Uncontrolled Resource Consumption (CWE-400)

Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by an Uncontrolled Resource Consumption vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to exhaust system resources,...

7.5CVSS0.15933EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.8 views

Adobe Commerce 安全漏洞

Adobe Commerce is a leading global digital business solution for businesses and brands offered by Adobe in the United States. There is a security vulnerability in Adobe Commerce, which stems from reliance on vulnerable third-party components, potentially causing application denial-of-service...

5.3CVSS5.8AI score0.0062EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.16 views

Adobe Commerce 资源管理错误漏洞

Adobe Commerce is a leading global digital business solution for businesses and brands offered by Adobe in the United States. There is a resource management vulnerability in Adobe Commerce, which stems from uncontrolled resource consumption. This vulnerability could lead to application...

7.5CVSS5.8AI score0.00675EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.17 views

Adobe Commerce 代码问题漏洞

Adobe Commerce is a leading global digital business solution for businesses and brands offered by Adobe in the United States. There is a code vulnerability in Adobe Commerce, which stems from server-side request forgeing. This vulnerability may allow security features to be bypassed, enabling...

7.4CVSS5.9AI score0.00471EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.9 views

Adobe Commerce 安全漏洞

Adobe Commerce is a leading global digital business solution for businesses and brands offered by Adobe in the United States. There is a security vulnerability in Adobe Commerce, which stems from improper authorization. This vulnerability may allow security features to be bypassed, enabling...

7.5CVSS5.8AI score0.00411EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/04/25 1:22 p.m.8 views

CVE-2026-6043

P4 Server versions prior to 2026.1 are configured with insecure default settings that, when exposed to untrusted networks, allow unauthenticated attackers to create arbitrary user accounts, enumerate existing users, authenticate to accounts with no password set, and access depot contents via the...

8.8CVSS5.5AI score0.00457EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/04/24 11:2 a.m.5 views

CVE-2026-6043 Insecure Default Configuration in P4 Server

P4 Server versions prior to 2026.1 are configured with insecure default settings that, when exposed to untrusted networks, allow unauthenticated attackers to create arbitrary user accounts, enumerate existing users, authenticate to accounts with no password set, and access depot contents via the...

8.8CVSS5.5AI score0.00457EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/04/24 11:2 a.m.28 views

CVE-2026-6043 Insecure Default Configuration in P4 Server

P4 Server versions prior to 2026.1 are configured with insecure default settings that, when exposed to untrusted networks, allow unauthenticated attackers to create arbitrary user accounts, enumerate existing users, authenticate to accounts with no password set, and access depot contents via the...

8.8CVSS0.00457EPSS
Exploits0References2
NVD
NVD
added 2026/04/15 9:17 p.m.6 views

CVE-2026-40176

Composer is a dependency manager for PHP. Versions 1.0 through 2.2.26 and 2.3 through 2.9.5 contain a command injection vulnerability in the Perforce::generateP4Command method, which constructs shell commands by interpolating user-supplied Perforce connection parameters port, user, client without...

7.8CVSS0.01065EPSS
Exploits4References6
NVD
NVD
added 2026/03/11 7:16 a.m.5 views

CVE-2026-3825

IFTOP developed by WellChoose has a Reflected Cross-site Scripting vulnerability, allowing authenticated remote attackers to execute arbitrary JavaScript codes in user's browser through phishing attacks...

6.1CVSS0.0025EPSS
Exploits0References2
Snyk
Snyk
added 2026/03/11 4:39 a.m.2 views

Improper Input Validation

Overview magento/community-edition is a modern cloud eCommerce platform. Affected versions of this package are vulnerable to Improper Input Validation. Adobe Vulnerability Report:This vulnerability could lead to application denial-of-service. An attacker could exploit this vulnerability by...

6.9CVSS5.8AI score0.00524EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/07 9:54 a.m.5 views

CVE-2013-7363

Unspecified vulnerability in the Diagnostics SMD agent in SAP Solution Manager allows remote attackers to obtain sensitive information, modify the configuration of applications, and install or remove applications via vectors involving the P4 protocol...

7.5CVSS6.8AI score0.01527EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/27 7:0 a.m.12 views

CVE-2025-65092

ESF-IDF is the Espressif Internet of Things IOT Development Framework. In versions 5.5.1, 5.4.3, and 5.3.4, when the ESP32-P4 uses its hardware JPEG decoder, the software parser lacks necessary validation checks. A specially crafted malicious JPEG image could exploit the parsing routine and trigg...

6.9CVSS6.9AI score0.00313EPSS
Exploits0References1
Rows per page
Query Builder