In JetBrains Hub before 2021.1.13690, information disclosure via avatar metadata is possible.
Max CVSS
7.5
EPSS Score
0.15%
Published
2021-11-09
Updated
2021-11-10
In JetBrains Hub before 2021.1.13690, stored XSS is possible.
Max CVSS
6.1
EPSS Score
0.07%
Published
2021-11-09
Updated
2021-11-10
In JetBrains Hub before 2021.1.13415, a DoS via user information is possible.
Max CVSS
7.5
EPSS Score
0.09%
Published
2021-11-09
Updated
2021-11-10
In JetBrains Hub before 2021.1.13690, the authentication throttling mechanism could be bypassed.
Max CVSS
9.8
EPSS Score
0.20%
Published
2021-11-09
Updated
2022-07-12
In JetBrains YouTrack before 2021.3.21051, stored XSS is possible.
Max CVSS
5.4
EPSS Score
0.05%
Published
2021-11-09
Updated
2021-11-12
JetBrains YouTrack before 2021.3.23639 is vulnerable to Host header injection.
Max CVSS
9.8
EPSS Score
0.20%
Published
2021-11-09
Updated
2021-11-12
JetBrains YouTrack before 2021.3.24402 is vulnerable to stored XSS.
Max CVSS
5.4
EPSS Score
0.05%
Published
2021-11-09
Updated
2021-11-09
In JetBrains YouTrack Mobile before 2021.2, the client-side cache on iOS could contain sensitive information.
Max CVSS
5.3
EPSS Score
0.07%
Published
2021-11-09
Updated
2021-11-12
In JetBrains YouTrack Mobile before 2021.2, access token protection on iOS is incomplete.
Max CVSS
7.5
EPSS Score
0.08%
Published
2021-11-09
Updated
2021-11-15
In JetBrains YouTrack Mobile before 2021.2, access token protection on Android is incomplete.
Max CVSS
7.5
EPSS Score
0.08%
Published
2021-11-09
Updated
2021-11-15
In JetBrains YouTrack Mobile before 2021.2, task hijacking on Android is possible.
Max CVSS
5.3
EPSS Score
0.07%
Published
2021-11-09
Updated
2021-11-10
JetBrains YouTrack Mobile before 2021.2, is missing the security screen on Android and iOS.
Max CVSS
5.3
EPSS Score
0.07%
Published
2021-11-09
Updated
2021-11-10
In JetBrains YouTrack Mobile before 2021.2, iOS URL scheme hijacking is possible.
Max CVSS
5.3
EPSS Score
0.07%
Published
2021-11-09
Updated
2021-11-10
In JetBrains TeamCity before 2021.1.2, remote code execution via the agent push functionality is possible.
Max CVSS
9.8
EPSS Score
0.54%
Published
2021-11-09
Updated
2021-11-10
In JetBrains TeamCity before 2021.1.2, user enumeration was possible.
Max CVSS
5.3
EPSS Score
0.07%
Published
2021-11-09
Updated
2021-11-10
In JetBrains TeamCity before 2021.1.2, some HTTP security headers were missing.
Max CVSS
5.3
EPSS Score
0.07%
Published
2021-11-09
Updated
2021-11-09
In JetBrains TeamCity before 2021.1, information disclosure via the Docker Registry connection dialog is possible.
Max CVSS
7.5
EPSS Score
0.15%
Published
2021-11-09
Updated
2022-07-12
In JetBrains TeamCity before 2021.1.2, email notifications could include unescaped HTML for XSS.
Max CVSS
6.1
EPSS Score
0.07%
Published
2021-11-09
Updated
2021-11-09
In JetBrains TeamCity before 2021.1.2, stored XSS is possible.
Max CVSS
5.4
EPSS Score
0.05%
Published
2021-11-09
Updated
2021-11-09
In JetBrains TeamCity before 2021.1.2, permission checks in the Create Patch functionality are insufficient.
Max CVSS
5.3
EPSS Score
0.07%
Published
2021-11-09
Updated
2021-11-09
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!