Security Advisory

CVE-2024-33647

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-05-14 10:03:08

Last updated 2025-08-27 21:13:00

Assigner siemens

State PUBLISHED

Description

A vulnerability has been identified in Polarion ALM (All versions < V2404.0). The Apache Lucene based query engine in the affected application lacks proper access controls. This could allow an authenticated user to query items beyond the users allowed projects.

← Browse all CVEs View on cve.org ↗