CVE-2024-54155

CVSS 3.1 Score 3.7 of 10 (low)

Details

Published Dec 4, 2024
CWE ID 862

Summary

CVE-2024-54155 is a vulnerability affecting JetBrains YouTrack versions prior to 2024.3.51866. This issue involves improper access control, allowing unauthenticated users to view project names during application import processes. The vulnerability could potentially enable attackers to gain insight into sensitive project information, increasing the risk of unauthorized access and data breaches. JetBrains has released a patch to address this issue, and users are encouraged to update their systems as soon as possible to mitigate the risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • JetBrains YouTrack

Affected Vendors

  • JetBrains