CNNVD-202602-1312 Information

Feb 09, 2026 cve

CNNVD ID

CNNVD-202602-1312

CVE-2026-24777

  • CNNVD Published: 2026-02-09

Description (Chinese)

OpenProject是OpenProject开源的一个基于Web的项目管理软件。 OpenProject 17.0.2之前版本存在安全漏洞,该漏洞源于缺少权限检查,可能导致锁定应用程序管理员。

Description (English)

OpenProject is a Web-based project management software from OpenProject Open Source. There was a security loophole in previous version 17.0.2 of OpenProject, which stemmed from a lack of permission checks and could lead to locking in the application administrator.

Vulnerability Type

其他

Affected Vendor

OpenProject

Published

2026-02-09

Last Modified

2026-02-24

References

https://github.com/opf/openproject/security/advisories/GHSA-fq66-cwg6-qq69 https://github.com/opf/openproject/releases/tag/v17.0.2 https://access.redhat.com/security/cve/cve-2026-24777

Patch

https://github.com/opf/openproject/releases

Share on: