CVE-2024-47162

CVSS 3.1 Score 4.1 of 10 (medium)

Details

Published Sep 19, 2024

Updated: Sep 24, 2024

CWE ID 522

Summary

CVE-2024-47162 is a medium-severity vulnerability affecting JetBrains YouTrack versions prior to 2024.3.44799, where a token could be exposed on the Imports page. The vulnerability has an exploitability score of 2.3, indicating a low level of complexity and requiring user interaction for exploitation via network attacks. Although the integrity impact is none and the confidentiality impact is low, organizations should remediate this issue by updating to the latest version of YouTrack as specified in JetBrains' vendor advisory. Failure to address this vulnerability may allow unauthorized access to sensitive information within affected products, potentially compromising data confidentiality. For more details, refer to JetBrains' privacy and security updates.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database