Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2025/02/07 6:6 p.m.12 views

CVE-2025-24029

Tuleap is an Open Source Suite to improve management of software developments and collaboration. Users possibly anonymous ones if the widget is used in the dashboard of a public project might get access to artifacts they should not see. This issue has been addressed in Tuleap Community Edition...

5.3CVSS6.8AI score0.00338EPSS
Exploits0References1
NVD
NVD
added 2025/02/03 10:15 p.m.32 views

CVE-2025-24029

Tuleap is an Open Source Suite to improve management of software developments and collaboration. Users possibly anonymous ones if the widget is used in the dashboard of a public project might get access to artifacts they should not see. This issue has been addressed in Tuleap Community Edition...

5.3CVSS0.00338EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/02/03 9:26 p.m.12 views

CVE-2025-24029 Artifact permissions are not verified in the Cross Tracker Search widget in Tuleap

Tuleap is an Open Source Suite to improve management of software developments and collaboration. Users possibly anonymous ones if the widget is used in the dashboard of a public project might get access to artifacts they should not see. This issue has been addressed in Tuleap Community Edition...

5.3CVSS6.8AI score0.00338EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/02/03 9:26 p.m.37 views

CVE-2025-24029 Artifact permissions are not verified in the Cross Tracker Search widget in Tuleap

Tuleap is an Open Source Suite to improve management of software developments and collaboration. Users possibly anonymous ones if the widget is used in the dashboard of a public project might get access to artifacts they should not see. This issue has been addressed in Tuleap Community Edition...

5.3CVSS0.00338EPSS
Exploits0References4
CVE
CVE
added 2025/02/03 9:26 p.m.65 views

CVE-2025-24029

CVE-2025-24029 affects Tuleap’s Cross Tracker Search widget: artifact permissions are not verified, allowing access to restricted artifacts for users (including anonymous) when the widget is used in public project dashboards. Affected versions have been addressed by Tuleap: Community Edition 16.3...

5.3CVSS6.9AI score0.00338EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder