Skip to main content

Helix Alm

1 CVEs product

Monthly

CVE-2021-28973 MEDIUM POC This Month

The XML Import functionality of the Administration console in Perforce Helix ALM 2020.3.1 Build 22 accepts XML input data that is parsed by insecurely configured software components, leading to XXE. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XXE Helix Alm
NVD
CVSS 3.1
4.9
EPSS
0.9%
EPSS 1% CVSS 4.9
MEDIUM POC This Month

The XML Import functionality of the Administration console in Perforce Helix ALM 2020.3.1 Build 22 accepts XML input data that is parsed by insecurely configured software components, leading to XXE. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XXE Helix Alm
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy