CVE-2020-25208

In JetBrains YouTrack before 2020.4.4701, an attacker could enumerate users via the REST API without appropriate permissions.
Configurations

Configuration 1

cpe:2.3:a:jetbrains:youtrack:*:*:*:*:*:*:*:*

Information

Published : 2021-02-03 04:15

Updated : 2021-02-05 07:20


NVD link : CVE-2020-25208

Mitre link : CVE-2020-25208

Products Affected
No products.
CWE
CWE-276

Incorrect Default Permissions