Skip to main content

JetBrains Hub EUVDEUVD-2026-38007

| CVE-2026-56142 HIGH
Improperly Controlled Modification of Dynamically-Determined Object Attributes (CWE-915)
2026-06-19 JetBrains GHSA-v6fr-2xp3-xpr7
8.8
CVSS 3.1 · NVD
Share

Severity by source

Vendor (JetBrains) PRIMARY
CRITICAL
qualitative
NVD
8.8 HIGH
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
vuln.today AI
8.8 HIGH

Network-reachable account function with low complexity and no UI, but requires an existing low-privilege account (PR:L); successful account takeover yields total impact (C/I/A:H).

3.1 AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
4.0 AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Primary rating from Vendor (JetBrains).

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

11
Analysis Updated
Jun 26, 2026 - 13:13 vuln.today
v5 (cvss_changed)
Analysis Updated
Jun 26, 2026 - 13:12 vuln.today
v4 (cvss_changed)
Severity Changed
Jun 26, 2026 - 13:07 NVD
CRITICAL HIGH
CVSS changed
Jun 26, 2026 - 13:07 NVD
9.9 (CRITICAL) 8.8 (HIGH)
Patch available
Jun 19, 2026 - 14:31 EUVD
Analysis Updated
Jun 19, 2026 - 13:58 vuln.today
v3 (cvss_changed)
Analysis Updated
Jun 19, 2026 - 13:58 vuln.today
v2 (cvss_changed)
Re-analysis Queued
Jun 19, 2026 - 13:52 vuln.today
cvss_changed
CVSS changed
Jun 19, 2026 - 13:52 NVD
9.6 (CRITICAL) 9.9 (CRITICAL)
Analysis Generated
Jun 19, 2026 - 13:01 vuln.today
CVE Published
Jun 19, 2026 - 11:49 cve.org
CRITICAL 9.6

DescriptionNVD

In JetBrains Hub before 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 2024.2.148429 privilege escalation by attaching authentication details to accounts was possible

AnalysisAI

Privilege escalation in JetBrains Hub (versions prior to 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, and 2024.2.148429) allows an authenticated attacker to attach additional authentication details to existing accounts, enabling unauthorized access and elevation of privileges. The flaw, self-reported by JetBrains and patched, carries a CVSS 8.8 with high impact to confidentiality, integrity, and availability; no public exploit is identified at time of analysis and EPSS exploitation probability is low (0.41%).

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Authenticate as low-privilege Hub user
Delivery
Craft account-modification request
Exploit
Attach authentication details to target account
Execution
Authenticate as elevated account
Impact
Gain access to integrated tools

Vulnerability AssessmentAI

Exploitation Exploitation requires the attacker to already possess a valid authenticated JetBrains Hub account (CVSS PR:L), reachable over the network (AV:N), with no user interaction and low attack complexity. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment Signals are moderately consistent and point to a real but not emergency-grade priority. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker with a low-privilege but valid JetBrains Hub account sends a crafted account-management request that attaches their own authentication details (e.g., an additional login credential or identity binding) to a higher-privilege target account, then authenticates as that account to gain its access across Hub-integrated tools. Given AV:N/AC:L, this requires only network reachability to Hub and no user interaction, though it depends on the attacker first holding any authenticated session; no public POC is identified at time of analysis.
Remediation Vendor-released patch: upgrade JetBrains Hub to the fixed build for your release line - 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, or 2024.2.148429 (or later), per the JetBrains fixed-issues advisory at https://www.jetbrains.com/privacy-security/issues-fixed/. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Inventory all JetBrains Hub deployments and confirm current versions. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

More in Hub

View all
CVE-2025-65784 MEDIUM POC
6.5 Jan 13

Insecure permissions in Hubert Imoveis e Administracao Ltda Hub v2.0 1.27.3 allows authenticated attackers with low-leve

CVE-2026-50242 CRITICAL
9.8 Jun 19

Authentication bypass in JetBrains Hub (the identity and account-management server behind TeamCity, YouTrack, and other

CVE-2026-56141 CRITICAL
9.8 Jun 19

Account takeover in JetBrains Hub is possible through predictable restore codes, affecting all versions prior to 2026.1.

CVE-2025-65783 CRITICAL
9.8 Jan 13

Hub v2.0 property management system allows unauthenticated arbitrary file upload via /utils/uploadFile. Malicious PDF fi

CVE-2026-25848 CRITICAL
9.1 Feb 09

JetBrains Hub before 2025.3.119807 has an authentication bypass allowing administrative actions without proper credentia

CVE-2026-32229 MEDIUM
6.8 Mar 11

JetBrains Hub versions prior to 2026.1 contain an authentication bypass vulnerability where attackers with valid credent

CVE-2025-64683 MEDIUM
5.3 Nov 10

In JetBrains Hub before 2025.3.104432 information disclosure was possible via the Users API. Rated medium severity (CVSS

CVE-2025-64682 LOW
2.7 Nov 10

In JetBrains Hub before 2025.3.104432 a race condition allowed bypass of the Agent-user limit. Rated low severity (CVSS

CVE-2025-64681 LOW
2.7 Nov 10

In JetBrains Hub before 2025.3.104992 a race condition allowed bypass of the user limit via invitations. Rated low sever

CVE-2025-24456 MEDIUM
6.7 Jan 21

In JetBrains Hub before 2024.3.55417 privilege escalation was possible via LDAP authentication mapping. Rated medium sev

Share

EUVD-2026-38007 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy