CVE-2020-25210
First published: Mon Nov 16 2020(Updated: )
In JetBrains YouTrack before 2020.3.7955, an attacker could access workflow rules without appropriate access grants.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Jetbrains Youtrack | <2020.3.7955 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this JetBrains YouTrack vulnerability?
The vulnerability ID is CVE-2020-25210.
What is the severity of CVE-2020-25210?
The severity of CVE-2020-25210 is medium with a CVSS score of 5.3.
What is affected by CVE-2020-25210?
JetBrains YouTrack versions up to and excluding 2020.3.7955 are affected by CVE-2020-25210.
What can an attacker do with CVE-2020-25210?
An attacker could access workflow rules without appropriate access grants in JetBrains YouTrack before version 2020.3.7955.
How can I fix CVE-2020-25210 in JetBrains YouTrack?
To mitigate this vulnerability, users should update their JetBrains YouTrack installation to version 2020.3.7955 or later.
- collector/nvd-index
- agent/severity
- agent/type
- agent/author
- agent/event
- agent/references
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/description
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/jetbrains
- canonical/jetbrains youtrack