CVE-2026-62422
Severity CVSS v4.0:
Pending analysis
Type:
CWE-306
Missing Authentication for Critical Function
Publication date:
14/07/2026
Last modified:
14/07/2026
Description
In JetBrains YouTrack before 2026.1.13757,<br />
2025.3.148033,<br />
2025.2.148048,<br />
2025.1.148120,<br />
2024.3.148430,<br />
2024.2.148429 authentication bypass via direct database access leading to administrative access was possible
Impact
Base Score 3.x
10.00
Severity 3.x
CRITICAL



