In JetBrains Hub before 2021.1.13890, integration with JetBrains Account exposed an API key with excessive permissions.
7.5CVSS
7.5AI Score
0.002EPSS
6.5CVSS
6.5AI Score
0.001EPSS
6.1CVSS
6.2AI Score
0.001EPSS
JetBrains Hub before 2021.1.14276 was vulnerable to blind Server-Side Request Forgery (SSRF).
9.1CVSS
9.2AI Score
0.002EPSS
9.8CVSS
9.4AI Score
0.002EPSS