Primary

Context

JetBrains Hub Users API Information Disclosure Vulnerability

Vulnerability

Patched

A vulnerability allowing information disclosure via the Users API has been identified in JetBrains Hub versions prior to 2025.3.104432. This issue arises from improper access control, which could be exploited to access sensitive user information.

Impact

Exploitation of this vulnerability could lead to unauthorized access to user information, potentially including sensitive data.

Remediation

Users can update to JetBrains Hub version 2025.3.104432 or later to address this vulnerability.

Added: Nov 10, 2025, 2:31 PM

Updated: Nov 10, 2025, 2:31 PM

Vulnerability Rating

Custom Algorithm

spread

0.8

impact

2.5

exploitability

7.4

remediation

7.7

relevance

0.9

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.8

impact

2.5

exploitability

7.4

remediation

7.7

relevance

0.9

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

JetBrains Hub Users API Information Disclosure Vulnerability

Vulnerability

Impact

Remediation

Affected Products

JetBrains Hub

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating