Open Redirect Vulnerability in JetBrains Hub
CVE-2021-25757

6.1MEDIUM

Key Information:

Vendor: Jetbrains
Status: Hub
Vendor: CVE Published:; 3 February 2021

What is CVE-2021-25757?

An open redirect vulnerability was discovered in JetBrains Hub, which allows attackers to redirect users to arbitrary external sites, potentially leading to phishing attacks and other malicious activities. This issue affects versions of JetBrains Hub prior to 2020.1.12629, emphasizing the need for users to update their installations promptly to safeguard against exploitation.

References

https://blog.jetbrains.com

x_refsource_MISC

https://blog.jetbrains.com/blog/2021/02/03/jetbrains-secu...

x_refsource_MISC

CVSS V3.1

Score:

6.1

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 3, 2021
Vulnerability Reserved
Jan 21, 2021

Jetbrains

What is CVE-2021-25757?

References

CVSS V3.1

Timeline