Jetbrains: >> Hub >> 2020.1.12669 Security Vulnerabilities
In JetBrains Hub before 2021.1.13690, the authentication throttling mechanism could be bypassed.
CVSS Score
9.8
EPSS Score
0.0
Published
2021-11-09
In JetBrains Hub before 2021.1.13389, account takeover was possible during password reset.
CVSS Score
9.8
EPSS Score
0.0
Published
2021-08-06
In JetBrains Hub before 2021.1.13262, a potentially insufficient CSP for the Widget deployment feature was used.
CVSS Score
6.5
EPSS Score
0.0
Published
2021-08-06
In JetBrains Hub before 2021.1.13402, HTML injection in the password reset email was possible.
CVSS Score
6.1
EPSS Score
0.0
Published
2021-08-06
In JetBrains Hub before 2021.1.13079, two-factor authentication wasn't enabled properly for the All Users group.
CVSS Score
7.5
EPSS Score
0.0
Published
2021-05-11
Page 3