Primary

Context

JetBrains YouTrack Cloning Vulnerability Exposes Restricted Attachments

Vulnerability

Patched

A vulnerability in JetBrains YouTrack versions prior to 2025.1.74704 allows restricted attachments to become visible after an issue is cloned. This issue arises from improper handling of attachment permissions during the cloning process.

Impact

Exploitation of this vulnerability could lead to unauthorized visibility of restricted attachments, potentially disclosing sensitive information.

Remediation

Users can update to JetBrains YouTrack version 2025.1.74704 or later to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

5.0

impact

2.5

exploitability

5.2

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.0

impact

2.5

exploitability

5.2

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

JetBrains YouTrack Cloning Vulnerability Exposes Restricted Attachments

Vulnerability

Impact

Remediation

Affected Products

JetBrains YouTrack

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating