Unauthorized Access to Issue Descriptions in JetBrains YouTrack

Unauthorized Access to Issue Descriptions in JetBrains YouTrack

CVE-2020-24618 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

In JetBrains YouTrack versions before 2020.3.4313, 2020.2.11008, 2020.1.11011, 2019.1.65514, 2019.2.65515, and 2019.3.65516, an attacker can retrieve an issue description without appropriate access.

Learn more about our Web Application Penetration Testing UK.