PT-2026-57645 · Dassault Systèmes · Tuleap Enterprise Edition

Published

2026-07-13

·

Updated

2026-07-13

·

CVE-2026-14165

CVSS v3.1

7.5

High

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
An Authorization Bypass Through User-Controlled Key vulnerability affecting Tuleap Enterprise Edition from 17.0 through 17.5 could allow an attacker to access data of other users without authorization.

Fix

IDOR

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-14165

Affected Products

Tuleap Enterprise Edition