Denial of Service Vulnerability in JetBrains YouTrack
CVE-2023-35053

7.5HIGH

Key Information:

Vendor: JetBrains
Status: YouTrack
Vendor: CVE Published:; 12 June 2023

What is CVE-2023-35053?

A vulnerability in JetBrains YouTrack allows attackers to execute a Denial of Service (DoS) attack through exploited Helpdesk forms. This issue affects all versions of YouTrack prior to 2023.1.10518, potentially disrupting service availability for users and impacting productivity. It is essential for users to update their installations to mitigate this risk and ensure continued operations.

Affected Version(s)

YouTrack 0 < 2023.1.10518

References

https://www.jetbrains.com/privacy-security/issues-fixed/

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 12, 2023
Vulnerability Reserved
Jun 12, 2023