YouTrack Vulnerable to Potential Spoofing Attack Due to Lack of Punycode Encoding

CVE-2024-54158

Currently unrated

Key Information:

Vendor: JetBrains
Vendor: CVE Published:; 4 December 2024

Summary

In JetBrains YouTrack before 2024.3.52635 potential spoofing attack was possible via lack of Punycode encoding

References

https://www.jetbrains.com/privacy-security/issues-fixed/

Timeline

Vulnerability published
Dec 4, 2024

Collectors

NVD Database

.