CVE-2024-30246

CVSS 3.1 Score 7.6 of 10 (high)

Details

Published Mar 29, 2024

Updated: Apr 1, 2024

CWE ID 440

CWE ID 670

Summary

CVE-2024-30246 is a vulnerability affecting Tuleap, an open-source software development and collaboration suite. Malicious users can exploit this issue to delete sensitive information or potentially gain access to restricted artifacts, although the exact information impacted is not controllable. Affected fields include Date, File, Float, Int, List, OpenList, Text, and Permissions on artifact. This vulnerability has been addressed in Tuleap Community Edition version 15.7.99.6 and Tuleap Enterprise Edition versions 15.7-2, 15.6-5, 15.5-6, 15.4-8, 15.3-6, 15.2-5, 15.1-9, 15.0-9, and 14.12-6.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vFgZM7
https://www.cve.org/CVERecord?id=CVE-2024-30246
https://nvd.nist.gov/vuln/detail/CVE-2024-30246

Back to Vulnerability Database

CVE-2024-30246

CVSS 3.1 Score 7.6 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations