Credential Disclosure via RPC Commands in JetBrains UpSource Versions Before 2018.2 Build 1293

Credential Disclosure via RPC Commands in JetBrains UpSource Versions Before 2018.2 Build 1293

CVE-2019-12157 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

In JetBrains UpSource versions before 2018.2 build 1293, there is credential disclosure via RPC commands.

Learn more about our Web Application Penetration Testing UK.