CVE-2024-47160

Summary

CVE-2024-47160 is a vulnerability found in JetBrains YouTrack versions prior to 2024.3.44799, which allows unauthorized access to global application configuration data. This issue affects a wide range of products associated with YouTrack, potentially exposing sensitive information due to inadequate authorization controls. To remediate this vulnerability, users are advised to upgrade to the latest version of JetBrains YouTrack where the issue has been fixed. The vulnerability is rated with a medium base severity score of 5.3 and has a relatively low exploitability score of 3.9, indicating it requires no user interaction and can be exploited over the network. Organizations could face potential data leaks or unauthorized configuration changes if they do not address this vulnerability promptly.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.