CVE-2025-14604 The following vulnerabilities, which may affect IBM Storage Scale when a directory has a specific ACL composition and could lead to improper execute permissions, have been remediated in Storage Scale versions 5.2.3.6 and 6.0.0.2

IBM Storage Scale IBM S through rage Scale 5.2.3.0 - 5.2.3.5, and IBM S through rage Scale 6.0.0.0 - 6.0.0.1 could allow a local user to unintentionally trigger additional permissions for resources in a way that allows that resource to be executed by unintended actors...

CVE-2025-59040

CVE-2025-59040 concerns Tuleap. Backlog item representations do not verify the permissions of child trackers, potentially allowing users to see tracker names they should not access due to unverified sub-tracker privileges. Affected products: Tuleap Community Edition and Tuleap Enterprise Edition....