CVE-2025-24029

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Feb 3, 2025

CWE ID 280

Summary

CVE-2025-24029 affects Tuleap, an open-source software development and collaboration suite. This vulnerability grants unauthorized users, including anonymous ones in public projects, access to restricted artifacts. The issue has been resolved in Tuleap Community Edition 16.3.99.1737562605 and Tuleap Enterprise Editions 16.3-5 and 16.2-7. It is strongly recommended that users upgrade to the latest versions to mitigate this risk, as no workarounds are available.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/2h7pRX
https://www.cve.org/CVERecord?id=CVE-2025-24029
https://nvd.nist.gov/vuln/detail/CVE-2025-24029

Back to Vulnerability Database

CVE-2025-24029

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations