An Authorization Bypass Through User-Controlled Key vulnerability affecting Tuleap Enterprise Edition from 17.0 through 17.5 could allow an attacker to access data of other users without authorization.
Project Subscriptions
Advisories
No advisories yet.
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
Mon, 13 Jul 2026 15:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Mon, 13 Jul 2026 15:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Dassault Systèmes
Dassault Systèmes tuleap Enterprise Edition |
|
| Vendors & Products |
Dassault Systèmes
Dassault Systèmes tuleap Enterprise Edition |
Mon, 13 Jul 2026 07:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | An Authorization Bypass Through User-Controlled Key vulnerability affecting Tuleap Enterprise Edition from 17.0 through 17.5 could allow an attacker to access data of other users without authorization. | |
| Title | Authorization Bypass Through User-Controlled Key vulnerability affecting Tuleap Enterprise Edition from 17.0 through 17.5 | |
| Weaknesses | CWE-639 | |
| References |
| |
| Metrics |
cvssV3_1
|
Projects
Sign in to view the affected projects.
Status: PUBLISHED
Assigner: 3DS
Published:
Updated: 2026-07-13T14:47:37.703Z
Reserved: 2026-06-30T06:02:28.161Z
Link: CVE-2026-14165
Updated: 2026-07-13T14:47:34.431Z
No data.
No data.
OpenCVE Enrichment
Updated: 2026-07-13T17:30:04Z
Weaknesses