CVE-2024-50701: TeamPass does not properly check whether a folder is in a user's allowed folders list
TeamPass before 3.1.3.1, when retrieving information about access rights for a folder, does not properly check whether a folder is in a user’s allowed folders list that has been defined by an admin.
References
- github.com/advisories/GHSA-2697-96mv-3gfm
- github.com/nilsteampassnet/TeamPass
- github.com/nilsteampassnet/TeamPass/commit/ddbb2d3d94085dced50c4936fd2215af88e4a88d
- github.com/nilsteampassnet/TeamPass/compare/3.1.2...3.1.3.1
- github.com/nilsteampassnet/TeamPass/compare/3.1.3...3.1.3.1
- nvd.nist.gov/vuln/detail/CVE-2024-50701
Detect and mitigate CVE-2024-50701 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →