Описание
Tuleap is an open source suite to improve management of software developments and collaboration. Prior to version 15.5.99.76 of Tuleap Community Edition and prior to versions 15.5-4 and 15.4-7 of Tuleap Enterprise Edition, users with a read access to a tracker where the mass update feature is used might get access to restricted information. Tuleap Community Edition 15.5.99.76, Tuleap Enterprise Edition 15.5-4, and Tuleap Enterprise Edition 15.4-7 contain a patch for this issue.
Ссылки
- Patch
- PatchVendor Advisory
- Broken Link
- Vendor Advisory
- Patch
- PatchVendor Advisory
- Broken Link
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 15.4-7 (исключая)Версия до 15.5.99.76 (исключая)Версия от 15.5 (включая) до 15.5-4 (исключая)
Одно из
cpe:2.3:a:enalean:tuleap:*:*:*:*:enterprise:*:*:*
cpe:2.3:a:enalean:tuleap:*:*:*:*:community:*:*:*
cpe:2.3:a:enalean:tuleap:*:*:*:*:enterprise:*:*:*
EPSS
Процентиль: 41%
0.00191
Низкий
5.4 Medium
CVSS3
6.5 Medium
CVSS3
Дефекты
CWE-200
NVD-CWE-noinfo
EPSS
Процентиль: 41%
0.00191
Низкий
5.4 Medium
CVSS3
6.5 Medium
CVSS3
Дефекты
CWE-200
NVD-CWE-noinfo