SCA: security update for neotoma (GHSA-wrr4-782v-jhwh)

high Tenable Self-Hosted Container Security Plugin ID 443933

Description

neotoma has tenant isolation gap in relationship query endpoints

Solution

Update the neotoma library and its related packages to version 0.14.0 or later.

See Also

https://github.com/advisories/GHSA-wrr4-782v-jhwh

Plugin Details

Severity: High

ID: 443933

Version: Revision 1.1

Type: Local

Family: SCA Checks

Published: 6/25/2026

Updated: 6/25/2026

Supported Sensors: Tenable Cloud Security, Tenable Self-Hosted Container Security

Vulnerability Information

Exploit Ease: No known exploits are available

Patch Publication Date: 6/25/2026

Vulnerability Publication Date: 6/25/2026

Reference Information

cwe: CWE-201