Primary

Context

JetBrains YouTrack Improper Access Control Vulnerability Allowing Modification of Service Accounts by Low-Privileged Users

Vulnerability

Patched

A vulnerability in JetBrains YouTrack prior to version 2026.1.13570 allowed low-privileged users to improperly modify service accounts due to inadequate access control. This issue could be exploited by users with limited permissions to make unauthorized changes to service account configurations.

Impact

Exploitation of this vulnerability could lead to unauthorized modifications of service accounts, potentially allowing for elevated privileges or access to restricted functionalities within YouTrack.

Added: May 29, 2026, 7:19 PM

Updated: May 29, 2026, 7:19 PM

Vulnerability Rating

Custom Algorithm

spread

5.0

impact

2.5

exploitability

5.2

remediation

7.7

relevance

9.6

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.0

impact

2.5

exploitability

5.2

remediation

7.7

relevance

9.6

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

JetBrains YouTrack Improper Access Control Vulnerability Allowing Modification of Service Accounts by Low-Privileged Users

Vulnerability

Impact

Affected Products

JetBrains YouTrack

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating