Vulnerabilities > Jetbrains > HUB > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-04-24 CVE-2022-48477 Server-Side Request Forgery (SSRF) vulnerability in Jetbrains HUB
In JetBrains Hub before 2023.1.15725 SSRF protection in Auth Module integration was missing
network
low complexity
jetbrains CWE-918
critical
 9.8
9.8
2022-02-25 CVE-2022-25262 Insufficient Verification of Data Authenticity vulnerability in Jetbrains HUB
In JetBrains Hub before 2022.1.14434, SAML request takeover was possible.
network
low complexity
jetbrains CWE-345
critical
 9.8
9.8