CVE-2023-45849
CRITICAL EXPLOITEDHelix Core < 2023.2 - Arbitrary Code Execution and Privilege Escalation
Title source: llmExploitation Summary
CVE-2023-45849 has been observed exploited in the wild (reported by VulnCheck KEV).
Description
An arbitrary code execution which results in privilege escalation was discovered in Helix Core versions prior to 2023.2. Reported by Jason Geffner.
References (1)
Core 1
Core References
Product
https://perforce.com
Scores
CVSS v3
9.0
EPSS
0.0112
EPSS Percentile
61.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
Details
VulnCheck KEV
2024-01-30
CWE
CWE-94
Status
published
Products (1)
perforce/helix_core
< 2023.2
Published
Nov 08, 2023
Tracked Since
Feb 18, 2026