CVE-2020-24618
MEDIUMJetBrains YouTrack <2020.3.4313-2019.3.65516 - Info Disclosure
Title source: llmDescription
In JetBrains YouTrack versions before 2020.3.4313, 2020.2.11008, 2020.1.11011, 2019.1.65514, 2019.2.65515, and 2019.3.65516, an attacker can retrieve an issue description without appropriate access.
References (3)
Core 3
Core References
Vendor Advisory x_refsource_misc
https://blog.jetbrains.com
Vendor Advisory x_refsource_misc
https://youtrack.jetbrains.com/issue/JT-59265
Vendor Advisory x_refsource_confirm
https://blog.jetbrains.com/2020/11/16/jetbrains-security-bulletin-q3-2020/
Scores
CVSS v3
6.5
EPSS
0.0000
EPSS Percentile
0.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Details
Status
published
Products (1)
jetbrains/youtrack
< 2019.1.65514
Published
Aug 27, 2020
Tracked Since
Feb 18, 2026