CNNVD-202511-950 Information

CNNVD ID

CNNVD-202511-950

Related CVE

CVE-2025-64685

• CNNVD Published: 2025-11-10

Description (Chinese)

JetBrains YouTrack是捷克JetBrains公司的一套基于浏览器的错误跟踪和项目管理软件。该软件具有错误跟踪、创建工作流程和监控项目进度等功能。 JetBrains YouTrack 2025.3.104432之前版本存在信任管理问题漏洞，该漏洞源于缺少TLS证书验证，可能导致数据泄露。

Description (English)

Jetbrains YouTrack is a project management software set based on browser-based errors by Czech Jetbrains. The software has features such as bug tracking, creating workflows and monitoring project progress. Jetbrains YouTrack 2025.3.104432 had a trust management gap, which stemmed from a lack of TLS certification, which could lead to data leakage.

Hazard Level

Medium

Vulnerability Type

信任管理问题

Affected Vendor

JetBrains

Published

2025-11-10

Last Modified

2026-02-24

References

https://www.jetbrains.com/privacy-security/issues-fixed/ https://access.redhat.com/security/cve/cve-2025-64685

Patch

https://www.jetbrains.com/privacy-security/issues-fixed/