CVE-2024-47159

Name of the Vulnerable Software and Affected Versions: JetBrains YouTrack versions prior to 2024.3.44799

Description: The issue is related to insufficient authorization mechanisms in JetBrains YouTrack, allowing a remote attacker to exploit the vulnerability and potentially elevate their privileges to execute arbitrary commands. A user without appropriate permissions could restore workflows attached to a project.

Recommendations: For versions prior to 2024.3.44799, update to version 2024.3.44799 or later to resolve the issue. As a temporary workaround, consider restricting access to workflow restoration functionality for users without proper permissions.