Vulnerabilities > CVE-2024-28230 - Missing Authorization vulnerability in Jetbrains Youtrack

CVSS 6.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

NONE

network

low complexity

jetbrains

CWE-862

NVD

Published: 2024-03-07

Updated: 2024-12-16

Summary

In JetBrains YouTrack before 2024.1.25893 attaching/detaching workflow to a project was possible without project admin permissions

Vulnerable Configurations

Part	Description	Count
Application	Jetbrains Jetbrains Youtrack - Jetbrains Youtrack 2.2.1 Jetbrains Youtrack 2.19.2.65515 Jetbrains Youtrack 3.3 Jetbrains Youtrack 4.2.4 Jetbrains Youtrack 5.2.5 Jetbrains Youtrack 6.0.12124 Jetbrains Youtrack 6.0.12634 Jetbrains Youtrack 6.5.17031 Jetbrains Youtrack 6.5.17057 Jetbrains Youtrack 6.5.17105 Jetbrains Youtrack 6.5.17122 Jetbrains Youtrack 7.0.26198 Jetbrains Youtrack 7.0.26630 Jetbrains Youtrack 7.0.26754 Jetbrains Youtrack 7.0.26927 Jetbrains Youtrack 7.0.27676 Jetbrains Youtrack 7.0.27705 Jetbrains Youtrack 7.0.27777 Jetbrains Youtrack 7.0.27965 Jetbrains Youtrack 7.0.28110 Jetbrains Youtrack 7.0.28450 Jetbrains Youtrack 7.0.28958 Jetbrains Youtrack 7.0.29566 Jetbrains Youtrack 2017.1.30791 Jetbrains Youtrack 2017.1.30867 Jetbrains Youtrack 2017.1.30973 Jetbrains Youtrack 2017.1.31650 Jetbrains Youtrack 2017.2.32529 Jetbrains Youtrack 2017.2.32582 Jetbrains Youtrack 2017.2.32799 Jetbrains Youtrack 2017.2.32853 Jetbrains Youtrack 2017.2.33063 Jetbrains Youtrack 2017.2.33154 Jetbrains Youtrack 2017.2.33372 Jetbrains Youtrack 2017.2.33390 Jetbrains Youtrack 2017.2.33766 Jetbrains Youtrack 2017.2.34279 Jetbrains Youtrack 2017.2.34480 Jetbrains Youtrack 2017.2.35124 Jetbrains Youtrack 2017.3.35488 Jetbrains Youtrack 2017.3.35968 Jetbrains Youtrack 2017.3.36019 Jetbrains Youtrack 2017.3.36369 Jetbrains Youtrack 2017.3.36626 Jetbrains Youtrack 2017.3.36743 Jetbrains Youtrack 2017.3.37116 Jetbrains Youtrack 2017.3.37517 Jetbrains Youtrack 2017.4.37623 Jetbrains Youtrack 2017.4.37933 Jetbrains Youtrack 2017.4.38030 Jetbrains Youtrack 2017.4.38399 Jetbrains Youtrack 2017.4.39083 Jetbrains Youtrack 2017.4.39238 Jetbrains Youtrack 2017.4.39406 Jetbrains Youtrack 2017.4.39533 Jetbrains Youtrack 2018.1.39916 Jetbrains Youtrack 2018.1.40025 Jetbrains Youtrack 2018.1.40066 Jetbrains Youtrack 2018.1.40341 Jetbrains Youtrack 2018.1.40840 Jetbrains Youtrack 2018.1.41051 Jetbrains Youtrack 2018.1.41561 Jetbrains Youtrack 2018.1.41826 Jetbrains Youtrack 2018.2.42133 Jetbrains Youtrack 2018.2.42223 Jetbrains Youtrack 2018.2.42284 Jetbrains Youtrack 2018.2.42337 Jetbrains Youtrack 2018.2.42881 Jetbrains Youtrack 2018.2.43142 Jetbrains Youtrack 2018.2.44329 Jetbrains Youtrack 2018.2.45073 Jetbrains Youtrack 2018.2.45146 Jetbrains Youtrack 2018.2.45513 Jetbrains Youtrack 2018.3.46358 Jetbrains Youtrack 2018.3.46581 Jetbrains Youtrack 2018.3.46727 Jetbrains Youtrack 2018.3.47010 Jetbrains Youtrack 2018.3.47078 Jetbrains Youtrack 2018.3.47109 Jetbrains Youtrack 2018.3.47247 Jetbrains Youtrack 2018.3.47965 Jetbrains Youtrack 2018.3.48045 Jetbrains Youtrack 2018.4.48293 Jetbrains Youtrack 2018.4.48406 Jetbrains Youtrack 2018.4.48733 Jetbrains Youtrack 2018.4.49168 Jetbrains Youtrack 2018.4.49352 Jetbrains Youtrack 2018.4.49852 Jetbrains Youtrack 2019.1.50680 Jetbrains Youtrack 2019.1.50730 Jetbrains Youtrack 2019.1.50916 Jetbrains Youtrack 2019.1.51078 Jetbrains Youtrack 2019.1.51277 Jetbrains Youtrack 2019.1.51759 Jetbrains Youtrack 2019.1.51932 Jetbrains Youtrack 2019.1.52545 Jetbrains Youtrack 2019.1.52584 Jetbrains Youtrack 2019.1.52973 Jetbrains Youtrack 2019.1.65514 Jetbrains Youtrack 2019.2.0 Jetbrains Youtrack 2019.2.53938 Jetbrains Youtrack 2019.2.54033 Jetbrains Youtrack 2019.2.54193 Jetbrains Youtrack 2019.2.55152 Jetbrains Youtrack 2019.2.55688 Jetbrains Youtrack 2019.2.56187 Jetbrains Youtrack 2019.2.56535 Jetbrains Youtrack 2019.2.56594 Jetbrains Youtrack 2019.2.57829 Jetbrains Youtrack 2019.2.57909 Jetbrains Youtrack 2019.2.59309 Jetbrains Youtrack 2019.3 Jetbrains Youtrack 2019.3.65512 Jetbrains Youtrack 2019.3.65516 Jetbrains Youtrack 2020.1 Jetbrains Youtrack 2020.1.659 Jetbrains Youtrack 2020.1.1331 Jetbrains Youtrack 2020.1.3412 Jetbrains Youtrack 2020.1.3588 Jetbrains Youtrack 2020.1.11011 Jetbrains Youtrack 2020.2 Jetbrains Youtrack 2020.2.0 Jetbrains Youtrack 2020.2.6881 Jetbrains Youtrack 2020.2.8527 Jetbrains Youtrack 2020.2.8873 Jetbrains Youtrack 2020.2.10514 Jetbrains Youtrack 2020.2.10643 Jetbrains Youtrack 2020.2.11008 Jetbrains Youtrack 2020.3 Jetbrains Youtrack 2020.3.888 Jetbrains Youtrack 2020.3.4313 Jetbrains Youtrack 2020.3.5333 Jetbrains Youtrack 2020.3.6638 Jetbrains Youtrack 2020.3.7955 Jetbrains Youtrack 2020.4.4701 Jetbrains Youtrack 2020.4.6808 Jetbrains Youtrack 2020.5.3123 Jetbrains Youtrack 2020.6.1099 Jetbrains Youtrack 2020.6.1767 Jetbrains Youtrack 2020.1331 Jetbrains Youtrack 2020.6881 Jetbrains Youtrack 2020.8527 Jetbrains Youtrack 2020.8873 Jetbrains Youtrack 2020.10643 Jetbrains Youtrack 2021.1.9819 Jetbrains Youtrack 2021.1.10244 Jetbrains Youtrack 2021.1.11111 Jetbrains Youtrack 2021.1.11513 Jetbrains Youtrack 2021.1.13597 Jetbrains Youtrack 2021.1.14501 Jetbrains Youtrack 2021.1.15276 Jetbrains Youtrack 2021.2.16363 Jetbrains Youtrack 2021.2.17047 Jetbrains Youtrack 2021.2.17925 Jetbrains Youtrack 2021.2.19255 Jetbrains Youtrack 2021.2.19690 Jetbrains Youtrack 2021.3.21051 Jetbrains Youtrack 2021.3.21558 Jetbrains Youtrack 2021.3.22256 Jetbrains Youtrack 2021.3.22664 Jetbrains Youtrack 2021.3.23639 Jetbrains Youtrack 2021.3.24402 Jetbrains Youtrack 2021.3.26618 Jetbrains Youtrack 2021.3.26792 Jetbrains Youtrack 2021.3.29124 Jetbrains Youtrack 2021.3.30245 Jetbrains Youtrack 2021.4.31698 Jetbrains Youtrack 2021.4.32527 Jetbrains Youtrack 2021.4.33055 Jetbrains Youtrack 2021.4.34389 Jetbrains Youtrack 2021.4.35732 Jetbrains Youtrack 2021.4.35970 Jetbrains Youtrack 2021.4.36179 Jetbrains Youtrack 2021.4.36872 Jetbrains Youtrack 2021.4.38425 Jetbrains Youtrack 2021.4.40426 Jetbrains Youtrack 2021.4.40676 Jetbrains Youtrack 2022.1.42540 Jetbrains Youtrack 2022.1.42950 Jetbrains Youtrack 2022.1.43563 Jetbrains Youtrack 2022.1.43700 Jetbrains Youtrack 2022.1.43911 Jetbrains Youtrack 2022.1.45133 Jetbrains Youtrack 2022.1.46592 Jetbrains Youtrack 2022.1.65378 Jetbrains Youtrack 2022.2.51283 Jetbrains Youtrack 2022.2.51836 Jetbrains Youtrack 2022.2.52246 Jetbrains Youtrack 2022.2.52342 Jetbrains Youtrack 2022.2.52463 Jetbrains Youtrack 2022.2.52874 Jetbrains Youtrack 2022.2.53354 Jetbrains Youtrack 2022.2.53793 Jetbrains Youtrack 2022.2.55618 Jetbrains Youtrack 2022.2.57431 Jetbrains Youtrack 2022.2.59587 Jetbrains Youtrack 2022.2.60273 Jetbrains Youtrack 2022.2.60480 Jetbrains Youtrack 2022.2.62127 Jetbrains Youtrack 2022.2.65377 Jetbrains Youtrack 2022.3.63553 Jetbrains Youtrack 2022.3.64281 Jetbrains Youtrack 2022.3.65352 Jetbrains Youtrack 2022.3.65353 Jetbrains Youtrack 2022.3.65360 Jetbrains Youtrack 2022.3.65366 Jetbrains Youtrack 2022.3.65367 Jetbrains Youtrack 2022.3.65369 Jetbrains Youtrack 2022.3.65370 Jetbrains Youtrack 2022.3.65371 Jetbrains Youtrack 2022.3.65372 Jetbrains Youtrack 2022.3.65373 Jetbrains Youtrack 2022.3.65376 Jetbrains Youtrack 2022.3.65379 Jetbrains Youtrack 2023.1.10518 Jetbrains Youtrack 2023.1.10731 Jetbrains Youtrack 2023.1.11071 Jetbrains Youtrack 2023.1.16597 Jetbrains Youtrack 2023.1.16998 Jetbrains Youtrack 2023.1.17170 Jetbrains Youtrack 2023.1.17429 Jetbrains Youtrack 2023.1.17582 Jetbrains Youtrack 2023.1.18508 Jetbrains Youtrack 2023.1.22653 Jetbrains Youtrack 2023.2.19243 Jetbrains Youtrack 2023.2.19679 Jetbrains Youtrack 2023.2.19704 Jetbrains Youtrack 2023.2.19783 Jetbrains Youtrack 2023.2.20008 Jetbrains Youtrack 2023.2.20316 Jetbrains Youtrack 2023.2.21228 Jetbrains Youtrack 2023.2.22656 Jetbrains Youtrack 2023.2.26286 Jetbrains Youtrack 2023.3.22268 Jetbrains Youtrack 2023.3.22666 Jetbrains Youtrack 2023.3.22912 Jetbrains Youtrack 2023.3.23390 Jetbrains Youtrack 2023.3.24329 Jetbrains Youtrack 2023.3.26285	240

Common Weakness Enumeration (CWE)

CWE-862 - Missing Authorization

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References