PT-2024-27351 · Unknown · Tuleap Community Edition
Tgerbet
+1
·
Published
2024-06-25
·
Updated
2025-08-22
·
CVE-2024-37167
CVSS v3.1
4.3
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Tuleap Community Edition versions prior to 15.9.99.97
Description
The issue allows users to see backlog items that they should not have access to. This is a problem related to the management of software developments and collaboration within the Tuleap Open Source Suite.
Recommendations
For versions prior to 15.9.99.97, update to Tuleap Community Edition version 15.9.99.97 to resolve the issue.
Exploit
Fix
Improper Authorization
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Tuleap Community Edition