Lucene search

GoogleOSV:CVE-2023-35929

HistoryJul 25, 2023 - 6:15 p.m.

CVE-2023-35929

2023-07-2518:15:10

Google

osv.dev

tuleap

content escaping

malicious code

5.4 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

7.2 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

30.6%

JSON

Tuleap is a free and open source suite to improve management of software development and collaboration. Prior to version 14.10.99.4 of Tuleap Community Edition and prior to versions 14.10-2 and 14.9-5 of Tuleap Enterprise Edition, content displayed in the “card fields” (visible in the kanban and PV2 apps) is not properly escaped. A malicious user with the capability to create an artifact or to edit a field used as a card field could force victim to execute uncontrolled code. Tuleap Community Edition 14.10.99.4, Tuleap Enterprise Edition 14.10-2, and Tuleap Enterprise Edition 14.9-5 contain a fix.

CPENameOperatorVersion
tuleapeq11.14
tuleapeq8.1
tuleapeq8.14
tuleapeq8.9
tuleapeq9.12
tuleapeq8.6
tuleapeq5.0.2
tuleapeq13.3
tuleapeq12.8
tuleapeq7.4

Name	Operator	Version
tuleap	eq	11.14
tuleap	eq	8.1
tuleap	eq	8.14
tuleap	eq	8.9
tuleap	eq	9.12
tuleap	eq	8.6
tuleap	eq	5.0.2
tuleap	eq	13.3
tuleap	eq	12.8
tuleap	eq	7.4

Rows per page:

1-10 of 1671

References

github.com/Enalean/tuleap/commit/0b2945fbd260d37aa0aff2ca1c867d160f76188d

github.com/Enalean/tuleap/security/advisories/GHSA-xhjp-4rjf-q268

tuleap.net/plugins/git/tuleap/tuleap/stable?a=commit&h=0b2945fbd260d37aa0aff2ca1c867d160f76188d

tuleap.net/plugins/tracker/?aid=32629