# CVE-2026-14165

Authorization Bypass Through User-Controlled Key vulnerability affecting Tuleap Enterprise Edition from 17.0 through 17.5

**Published**
2026-07-13

**Updated**
-

**Description**
An Authorization Bypass Through User-Controlled Key vulnerability affecting Tuleap Enterprise Edition from 17.0 through 17.5 could allow an attacker to access data of other users without authorization.

**Affected Products**
Tuleap Enterprise Edition

**Affected Versions**
From 17.0 through 17.5

**Severity**
High

Go to Dassault Systèmes Security Advisories

[Security Advisories](/trust-center/security/security-advisories)

[   Go to CVE record     ](https://www.cve.org/CVERecord?id=CVE-2026-14165)

[   Access remediation information  ](https://my.enalean.com/plugins/document/tuleap-by-enalean/folder/3616/3617)