CVE-2026-50242

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.0570%

EPSS Percentile23.49th

Published2026年6月19日

Last Modified2026年6月19日

Vulnerability Description

In JetBrains Hub before 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 2024.2.148429 authentication bypass via direct database access leading to administrative access was possible

Affected Platforms (CPE)

No CPE configurations currently published for this record.

References & Advisories

🔗 https://www.jetbrains.com/privacy-security/issues-fixed/

関連する脆弱性情報

CVE-2026-4714010.0

vm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.4, NodeVM blocks several dangerous Node.js builtins such as mo...

CVE-2026-1052010.0

An OS Command Injection vulnerability in Ivanti Sentry before the R10.5.2, R10.6.2 and R10.7.1 versions allows a remote unauthenti...

CVE-2026-4713710.0

vm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.4, the fix for GHSA-8hg8-63c5-gwmx (CVE-2023-37903) introduced...

CVE-2026-4720810.0

vm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.4, VM2 suffers from a sandbox breakout vulnerability. This all...