Vulnerabilities > CVE-2019-18360 - Unspecified vulnerability in Jetbrains HUB

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

network

low complexity

NVD

Published: 2019-10-31

Updated: 2021-07-21

Summary

In JetBrains Hub versions earlier than 2019.1.11738, username enumeration was possible through password recovery.

Part	Description	Count
Application	Jetbrains Jetbrains HUB 1.0.648 Jetbrains HUB 1.0.739 Jetbrains HUB 1.0.749 Jetbrains HUB 1.0.770 Jetbrains HUB 1.0.797 Jetbrains HUB 1.0.809 Jetbrains HUB 2.0.182 Jetbrains HUB 2.0.314 Jetbrains HUB 2.5.330 Jetbrains HUB 2.5.359 Jetbrains HUB 2.5.450 Jetbrains HUB 2.5.456 Jetbrains HUB 2017.1 Jetbrains HUB 2017.1.4524 Jetbrains HUB 2017.1.4711 Jetbrains HUB 2017.2 Jetbrains HUB 2017.3 Jetbrains HUB 2017.4 Jetbrains HUB 2018.1 Jetbrains HUB 2018.3 Jetbrains HUB 2018.4.11298 Jetbrains HUB 2018.4.11436 Jetbrains HUB 2019.1	23