CVE-2022-24327
First published: Fri Feb 25 2022(Updated: )
In JetBrains Hub before 2021.1.13890, integration with JetBrains Account exposed an API key with excessive permissions.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| JetBrains Hub | <2021.1.13890 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2022-24327.
What is the severity of CVE-2022-24327?
The severity of CVE-2022-24327 is high with a CVSS score of 7.5.
Which software versions are affected by CVE-2022-24327?
CVE-2022-24327 affects JetBrains Hub before version 2021.1.13890.
What is the vulnerability in JetBrains Hub?
In JetBrains Hub before 2021.1.13890, integration with JetBrains Account exposed an API key with excessive permissions.
How can I fix CVE-2022-24327 in my JetBrains Hub installation?
To fix CVE-2022-24327, you should update JetBrains Hub to version 2021.1.13890 or higher.
- collector/nvd-index
- agent/weakness
- agent/references
- agent/severity
- agent/author
- agent/type
- agent/description
- agent/event
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/jetbrains
- canonical/jetbrains hub