Path Traversal Vulnerability in YouTrack Plugin Sandbox Could Lead to System Takeover

CVE-2024-54154

Currently unrated

Key Information:

Vendor: JetBrains
Vendor: CVE Published:; 4 December 2024

Summary

In JetBrains YouTrack before 2024.3.51866 system takeover was possible through path traversal in plugin sandbox

References

https://www.jetbrains.com/privacy-security/issues-fixed/

Timeline

Vulnerability published
Dec 4, 2024

Collectors

NVD Database

.