Code Injection in Perforce Helix Core (CVE-2026-6902)

Executive Summary  In this article, we disclose our latest findings we made on Perforce protocol P4 (Helix Core) between command line client and server, and reveal how a threat actor could leverage it to conduct attacks.  This security issue affects P4 (Helix Core)  before P4 (Helix Core) 2025.2 Patch 2, was patched and was attributed a CVSS score of 7.7 (CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L). See our recommendation section and the Perforce advisory for more information.  […]

The post Code Injection in Perforce Helix Core (CVE-2026-6902) appeared first on Blog.

This article has been indexed from Blog

Read the original article: