CVE-2024-54155

Name of the Vulnerable Software and Affected Versions: JetBrains YouTrack versions prior to 2024.3.51866

Description: The issue is related to improper access control in JetBrains YouTrack, which allowed listing of project names during app import without authentication. This could potentially allow a remote attacker to gain unauthorized access to protected information.

Recommendations: For versions prior to 2024.3.51866, update to version 2024.3.51866 or later to resolve the issue. As a temporary workaround, consider restricting access to the app import feature until a patch is available.