CVE-2024-50701 Information

Description

TeamPass before 3.1.3.1 when retrieving information about access rights for a folder does not properly check whether a folder is in a user’s allowed folders list that has been defined by an admin.

Reference

https://github.com/nilsteampassnet/TeamPass/commit/ddbb2d3d94085dced50c4936fd2215af88e4a88d https://github.com/nilsteampassnet/TeamPass/compare/3.1.2…3.1.3.1 https://github.com/nilsteampassnet/TeamPass/compare/3.1.3…3.1.3.1