CVE Catalog

CVE-2026-57923

MediumCVSS 5.3
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.16%

5th percentile — higher than 5% of all known CVEs

Summary

In JetBrains YouTrack before 2026.2.16593, improper authorization in the app configurations endpoint allowed unauthorized modification of project settings.

Risk Assessment

The risk involves the possibility of changing project configuration by an unauthorized user, which could lead to data integrity violations or unauthorized changes in project management processes.

Recommendation

It is recommended to immediately update JetBrains YouTrack to version 2026.2.16593 or later, which includes a fix for this vulnerability.

Original NVD description (English source)

In JetBrains YouTrack before 2026.2.16593 improper authorisation in the app configurations endpoint allowed modifying project settings

Vulnerability data from NVD (NIST) · CISA KEV · EPSS