Youtrack Security Vulnerabilities and Issues — Youtrack CVE List

Lucene search

JetbrainsYoutrack

5 matches found

CVE•added 2019/07/03 8:15 p.m.•233 views

CVE-2019-12852

An SSRF attack was possible on a JetBrains YouTrack server. The issue (1 of 2) was fixed in JetBrains YouTrack 2018.4.49168.

9.8CVSS9.3AI score0.00004EPSS

CVE•added 2019/07/03 7:15 p.m.•218 views

CVE-2019-12851

A CSRF vulnerability was detected in one of the admin endpoints of JetBrains YouTrack. The issue was fixed in YouTrack 2018.4.49852.

8.8CVSS8.6AI score0.00002EPSS

CVE•added 2019/07/03 7:15 p.m.•162 views

CVE-2019-12866

An Insecure Direct Object Reference, with Authorization Bypass through a User-Controlled Key, was possible in JetBrains YouTrack. The issue was fixed in 2018.4.49168.

9.8CVSS9.2AI score0.00004EPSS

CVE•added 2019/07/03 7:15 p.m.•80 views

CVE-2019-12867

Certain actions could cause privilege escalation for issue attachments in JetBrains YouTrack. The issue was fixed in 2018.4.49168.

9.8CVSS9.5AI score0.00005EPSS

CVE•added 2019/07/03 7:15 p.m.•76 views

CVE-2019-12850

A query injection was possible in JetBrains YouTrack. The issue was fixed in YouTrack 2018.4.49168.

9.8CVSS9.4AI score0.00006EPSS