CVE-2024-46980

MEDIUM

Published 2024-10-14T17:41:58.663Z

Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2024-46980. We'll provide specific mitigation strategies based on your environment and risk profile.

CVSS Score

V3.1

4.8

/10

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:N/I:L/A:L

Base Score Metrics

Exploitability: N/A Impact: N/A

EPSS Score

v2025.03.14

0.001

probability

of exploitation in the wild

There is a 0.1% chance that this vulnerability will be exploited in the wild within the next 30 days.

Updated: 2025-06-25

Exploit Probability

Percentile: 0.195

Higher than 19.5% of all CVEs

Attack Vector Metrics

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

REQUIRED

Scope

CHANGED

Impact Metrics

Confidentiality

NONE

Integrity

LOW

Availability

LOW

Description

Tuleap is a tool for end to end traceability of application and system developments. Prior to Tuleap Community Edition 15.13.99.37, Tuleap Enterprise Edition 15.13-3, and Tuleap Enterprise Edition 15.12-6, a site administrator could create an artifact link type with a forward label allowing them to execute uncontrolled code (or at least achieve content injection) in a mail client. Tuleap Community Edition 15.13.99.37, Tuleap Enterprise Edition 15.13-3, and Tuleap Enterprise Edition 15.12-6 fix this issue.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

Enalean

tuleap

Affected Versions:

< 15.13.99.37 < 15.13-3 < 15.12-6

References

https://github.com/Enalean/tuleap/security/advisories/GHSA-9fc9-47h6-82jj

https://github.com/Enalean/tuleap/commit/dd94a799982cd78ab06142008d745edf9e8fd494

https://tuleap.net/plugins/git/tuleap/tuleap/stable?a=commit&h=dd94a799982cd78ab06142008d745edf9e8fd494

https://tuleap.net/plugins/tracker/?aid=39689

Published: 2024-10-14T17:41:58.663Z

Last Modified: 2024-10-15T15:41:02.095Z

Copied to clipboard!