PT-2020-14651 · Jetbrains · Youtrack

Yurii Sanin

·

Published

2020-10-19

·

Updated

2020-10-22

·

CVE-2020-15822

CVSS v2.0

7.5

High

VectorAV:N/AC:L/Au:N/C:P/I:P/A:P
Name of the Vulnerable Software and Affected Versions JetBrains YouTrack versions prior to 2020.2.10514
Description The issue allows for Server-Side Request Forgery (SSRF) because URL filtering can be escaped.
Recommendations For versions prior to 2020.2.10514, update to version 2020.2.10514 or later to resolve the issue.

Fix

SSRF

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-918

Related Identifiers

CVE-2020-15822

Affected Products

Youtrack