4 matches found
CVE-2022-25262
In JetBrains Hub before 2022.1.14434, SAML request takeover was possible...
CVE-2022-25262
In JetBrains Hub before 2022.1.14434, SAML request takeover was possible...
CVE-2022-25262
In JetBrains Hub before 2022.1.14434, SAML request takeover was possible...
CVE-2022-25262
JetBrains Hub exposes a SAML request takeover vulnerability (CVE-2022-25262) in Hub versions before 2022.1.14434. Root cause: insufficient verification/handling of SAML requests, enabling takeover of SAML responses. Affects Hub’s SAML OAuth2->SAML exchange and may allow an attacker to misuse a...