Lucene search
K

40 matches found

EUVD
EUVD
added 2025/11/11 6:30 p.m.7 views

EUVD-2025-84340

In JetBrains YouTrack before 2025.3.104432 a race condition allowed bypass of helpdesk Agent limit...

2.7CVSS6.3AI score0.00195EPSS
Exploits0References2
NVD
NVD
added 2025/11/11 4:15 p.m.5 views

CVE-2025-64773

In JetBrains YouTrack before 2025.3.104432 a race condition allowed bypass of helpdesk Agent limit...

3.7CVSS0.00195EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/11 1:44 p.m.5 views

CVE-2025-64686

In JetBrains YouTrack before 2025.3.104432 missing user principal cleanup led to reuse of incorrect authorization context...

5.3CVSS6.8AI score0.00005EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/11 1:44 p.m.8 views

CVE-2025-64684

In JetBrains YouTrack before 2025.3.104432 information disclosure was possible via the feedback form...

7.5CVSS6.4AI score0.0028EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/11/11 12:0 a.m.8 views

PT-2025-46348

Name of the Vulnerable Software and Affected Versions JetBrains YouTrack versions prior to 2025.3.104432 Description A race condition existed that permitted circumvention of the helpdesk agent limit. Recommendations Update to version 2025.3.104432 or later...

2.7CVSS6.6AI score0.00195EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/11/11 12:0 a.m.5 views

JetBrains YouTrack 竞争条件问题漏洞

JetBrains YouTrack is a browser-based bug tracking and project management software from the Czech company JetBrains. The software features bug tracking, creating workflows and monitoring project progress. A vulnerability in JetBrains YouTrack prior to version 2025.3.104432 exists due to a...

3.7CVSS6.5AI score0.00195EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/10 3:31 p.m.4 views

EUVD-2025-44047

In JetBrains YouTrack before 2025.3.104432 insecure Junie configuration could lead to data exposure and unauthorized changes...

5.4CVSS6.3AI score0.00004EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/10 3:31 p.m.3 views

EUVD-2025-44053

In JetBrains YouTrack before 2025.3.104432 information disclosure was possible via the feedback form...

4.3CVSS5.9AI score0.0028EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/10 3:31 p.m.7 views

EUVD-2025-44054

In JetBrains Hub before 2025.3.104432 information disclosure was possible via the Users API...

5.3CVSS5.9AI score0.00184EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/10 3:31 p.m.4 views

EUVD-2025-44051

In JetBrains YouTrack before 2025.3.104432 missing user principal cleanup led to reuse of incorrect authorization context...

3.1CVSS6.3AI score0.00005EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/10 3:31 p.m.5 views

EUVD-2025-44050

In JetBrains YouTrack before 2025.3.104432 improper access control allowed modify MCP tool logic...

5.4CVSS6.4AI score0.00002EPSS
Exploits0References2
NVD
NVD
added 2025/11/10 2:15 p.m.4 views

CVE-2025-64686

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority because it was fixed before public disclosure and did not affect any released versions...

0.00005EPSS
Exploits0
OSV
OSV
added 2025/11/10 2:15 p.m.4 views

CVE-2025-64682

In JetBrains Hub before 2025.3.104432 a race condition allowed bypass of the Agent-user limit...

3.7CVSS5.8AI score
Exploits0References1
NVD
NVD
added 2025/11/10 2:15 p.m.5 views

CVE-2025-64684

In JetBrains YouTrack before 2025.3.104432 information disclosure was possible via the feedback form...

7.5CVSS0.0028EPSS
Exploits0References1
OSV
OSV
added 2025/11/10 2:15 p.m.3 views

CVE-2025-64684

In JetBrains YouTrack before 2025.3.104432 information disclosure was possible via the feedback form...

7.5CVSS5.8AI score0.0028EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/10 1:27 p.m.8 views

CVE-2025-64687

...

0.00002EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2025/11/10 1:27 p.m.7 views

CVE-2025-64687

...

6.3AI score0.00002EPSS
Exploits0
CVE
CVE
added 2025/11/10 1:27 p.m.11 views

CVE-2025-64686

JetBrains YouTrack prior to 2025.3.104432 is affected by CVE-2025-64686 due to missing user-principal cleanup, which can lead to reuse of an incorrect authorization context. The issue is addressed by upgrading to version 2025.3.104432 or later (mitigation).

6.4AI score0.00005EPSS
Exploits0
Cvelist
Cvelist
added 2025/11/10 1:27 p.m.10 views

CVE-2025-64686

...

0.00005EPSS
Exploits0
CVE
CVE
added 2025/11/10 1:27 p.m.14 views

CVE-2025-64685

JetBrains YouTrack before 2025.3.104432 is affected by CVE-2025-64685 due to missing TLS certificate validation, enabling data disclosure over the network. The issue is documented across multiple sources (NVD/NASL reads), with remediation to upgrade to YouTrack 2025.3.104432 or later. If details ...

8.1CVSS6.3AI score0.002EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder