CVE-2022-48477

Name of the Vulnerable Software and Affected Versions JetBrains Hub versions prior to 2023.1.15725

Description The issue concerns a missing Server-Side Request Forgery (SSRF) protection in the Auth Module integration. This could potentially allow for unauthorized access or actions. No information is provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited.

Recommendations For versions prior to 2023.1.15725, update to version 2023.1.15725 or later to resolve the issue. As a temporary workaround, consider restricting access to the Auth Module integration until the update is applied.