CVE-2026-33392

HIGH

JetBrains YouTrack <2025.3.131383 - RCE

Title source: llm
STIX 2.1

Description

In JetBrains YouTrack before 2025.3.131383 high privileged user can achieve RCE via sandbox bypass

References (1)

Core 1

Scores

CVSS v3 7.2
EPSS 0.0043
EPSS Percentile 33.8%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-1336
Status published
Products (2)
JetBrains/YouTrack < 2025.3.131383
jetbrains/youtrack < 2025.3.131383
Published Apr 17, 2026
Tracked Since Apr 17, 2026