CVE-2024-23344
CVSS V2 None
CVSS V3 None
Description
Tuleap is an Open Source Suite to improve management of software developments and collaboration. Some users might get access to restricted information when a process validates the permissions of multiple users (e.g. mail notifications). This issue has been patched in version 15.4.99.140 of Tuleap Community Edition.
Overview
- CVE ID
- CVE-2024-23344
- Assigner
- GitHub_M
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-02-06T15:58:19.781Z
- Last Modified Date
- 2024-02-06T15:58:19.781Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://github.com/Enalean/tuleap/security/advisories/GHSA-m3v5-2j5q-x85w | x_refsource_CONFIRM |
| https://github.com/Enalean/tuleap/commit/0329e21d268510bc00fed707406103edabf10e42 | x_refsource_MISC |
| https://tuleap.net/plugins/git/tuleap/tuleap/stable?a=commit&h=0329e21d268510bc00fed707406103edabf10e42 | x_refsource_MISC |
| https://tuleap.net/plugins/tracker/?aid=35862 | x_refsource_MISC |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-23344 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-23344 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-06-26 07:01:51 | Added to TrackCVE |