CVE-2021-25765 - OpenCVE

In JetBrains YouTrack before 2020.4.4701, CSRF via attachment upload was possible.

No CVSS v3.0

AV:N/AC:M/Au:N/C:P/I:P/A:P

Vendors	Products
Jetbrains	Youtrack

Configuration 1 [-]

cpe:2.3:a:jetbrains:youtrack:*:*:*:*:*:*:*:*

References

Link	Resource
https://blog.jetbrains.com	Product
https://blog.jetbrains.com/blog/2021/02/03/jetbrains-security-bulletin-q4-2020/	Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2021-02-03T15:26:18

Updated: 2021-02-03T15:26:18

Reserved: 2021-01-21T00:00:00

Link: CVE-2021-25765

JSON object: View

NVD Information

Status : Analyzed

Published: 2021-02-03T16:15:14.883

Modified: 2021-02-04T22:13:21.057

Link: CVE-2021-25765

JSON object: View

Redhat Information

No data.

CWE