Source |
CVE Liste |
Identifiant |
3520064 |
Date de publication |
2021-10-15 14:15:08 (vue: 2021-10-15 17:06:04) |
Titre |
CVE-2021-41148 |
Texte |
Tuleap Open ALM is a libre and open source tool for end to end traceability of application and system developments. Prior to version 11.16.99.173 of Community Edition and versions 11.16-6 and 11.15-8 of Enterprise Edition, an attacker with the ability to add one the CI widget to its personal dashboard could execute arbitrary SQL queries. Tuleap Community Edition 11.16.99.173, Tuleap Enterprise Edition 11.16-6, and Tuleap Enterprise Edition 11.15-8 contain a patch for this issue. |
Envoyé |
Oui |
Condensat |
173 2021 41148 ability add alm application arbitrary attacker community contain could cve dashboard developments edition end enterprise execute issue its libre one open patch personal prior queries source sql system tool traceability tuleap version versions widget |
Tags |
Tool
|
Stories |
|
Notes |
|
Move |
|