Home > Vulnerability Database > CVE-2025-22129

Mend.io Vulnerability Database

CVE-2025-22129

Date: February 3, 2025

Tuleap is an Open Source Suite to improve management of software developments and collaboration. In affected versions an unauthorized user might get access to restricted information. This issue has been addressed in Tuleap Community Edition 16.3.99.1736242932, Tuleap Enterprise Edition 16.2-5, and Tuleap Enterprise Edition 16.3-2. Users are advised to upgrade. There are no known workarounds for this vulnerability.

Severity Score

4.3

Related Resources (5)

Url: https://github.com/Enalean/tuleap/security/advisories/GHSA-f34g-wc2m-mf76

Url: https://tuleap.net/plugins/git/tuleap/tuleap/stable?a=commit&h=3edf8158ba40be66f0b661888b8b2805784795d1

Url: https://nvd.nist.gov/vuln/detail/CVE-2025-22129

Url: https://tuleap.net/plugins/tracker/?aid=41434

Url: https://www.mend.io/vulnerability-database/CVE-2025-22129

Severity Score

4.3

Weakness Type (CWE)

Improper Handling of Insufficient Permissions or Privileges

CWE-280

CVSS v3.1

Base Score:	4.3
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	LOW
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	NONE
Availability (A):	NONE

Mend.io Vulnerability Database

We found results for “”

CVE-2025-22129

Date: February 3, 2025

Severity Score

Related Resources (5)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?