Denial of Service Vulnerability in JetBrains Hub
CVE-2022-24328

6.5MEDIUM

Key Information:

Vendor: Jetbrains
Status: Hub
Vendor: CVE Published:; 25 February 2022

What is CVE-2022-24328?

In JetBrains Hub versions prior to 2021.1.13956, an unprivileged user is able to exploit the system, potentially leading to a denial of service (DoS). This vulnerability could allow unauthorized users to disrupt service availability, highlighting the importance of timely updates and secure configurations. Organizations are urged to review their JetBrains Hub installations and apply necessary patches to mitigate the risks associated with this vulnerability.

References

https://blog.jetbrains.com

x_refsource_MISC

https://blog.jetbrains.com/blog/2022/02/08/jetbrains-secu...

x_refsource_MISC

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 25, 2022
Vulnerability Reserved
Feb 2, 2022

Jetbrains

What is CVE-2022-24328?

References

CVSS V3.1

Timeline