CVE-2022-29811: XSS
First published: Thu Apr 28 2022(Updated: )
In JetBrains Hub before 2022.1.14638 stored XSS via project icon was possible.
Credit: security@jetbrains.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| JetBrains Hub | <2022.1.14638 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this JetBrains Hub vulnerability?
The vulnerability ID for this JetBrains Hub vulnerability is CVE-2022-29811.
What is the severity of CVE-2022-29811?
The severity of CVE-2022-29811 is medium with a score of 4.8.
How does the vulnerability in JetBrains Hub before 2022.1.14638 occur?
The vulnerability in JetBrains Hub before 2022.1.14638 allows for stored cross-site scripting (XSS) attacks through the project icon.
How can I fix the vulnerability in JetBrains Hub before 2022.1.14638?
To fix the vulnerability in JetBrains Hub before 2022.1.14638, update to version 2022.1.14638 or later.
Where can I find more information about this vulnerability?
You can find more information about this vulnerability at the following link: https://www.jetbrains.com/privacy-security/issues-fixed/
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/last-modified-date
- agent/weakness
- agent/severity
- agent/references
- agent/description
- agent/tags
- agent/first-publish-date
- agent/event
- agent/source
- vendor/jetbrains
- canonical/jetbrains hub