Primary

Context

JetBrains YouTrack Information Disclosure Vulnerability on Users and Groups Pages

Vulnerability

Patched

A vulnerability allowing information disclosure has been identified in JetBrains YouTrack, affecting versions prior to 2026.1.13162. This issue arises on the Users and Groups pages, where sensitive information could be improperly exposed.

Impact

Exploitation of this vulnerability could lead to unauthorized information disclosure on the Users and Groups pages.

Remediation

Users can update to YouTrack version 2026.1.13162 or later to address this vulnerability.

Added: May 29, 2026, 7:34 PM

Updated: May 29, 2026, 7:34 PM

Vulnerability Rating

Custom Algorithm

spread

5.0

impact

2.5

exploitability

7.4

remediation

7.7

relevance

9.7

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.0

impact

2.5

exploitability

7.4

remediation

7.7

relevance

9.7

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

JetBrains YouTrack Information Disclosure Vulnerability on Users and Groups Pages

Vulnerability

Impact

Remediation

Affected Products

JetBrains YouTrack

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating