Threats Tagged 'cve-2026-25846'
View all threats tagged with 'cve-2026-25846'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cve-2026-25846'
Click on any threat for detailed analysis and mitigation recommendations
CVE-2026-25846: CWE-532 in JetBrains YouTrackCVE-2026-25846 0 CVE-2026-25846 is a medium severity vulnerability in JetBrains YouTrack prior to version 2025. 3. 119033 where access tokens could be exposed in mailbox logs. This exposure stems from improper handling of sensitive information (CWE-532), potentially allowing attackers with network access and low privileges to obtain tokens without user interaction. While the vulnerability does not impact integrity or availability, the confidentiality breach could enable unauthorized access to YouTrack resources. No known exploits are currently reported in the wild. European organizations using affected YouTrack versions should prioritize updating to the patched release to prevent token leakage. Mitigation involves upgrading YouTrack, auditing mailbox logs for token exposure, and restricting log access. Countries with significant JetBrains YouTrack adoption, such as Germany, France, and the UK, are most likely to be impacted due to their large software development sectors. The vulnerability’s CVSS score of 6. Join the discussion | CVE Database V5 | 02/09/2026, 10:38:59 UTC Added: 02/09/2026, 11:01:15 UTC |
Showing 1 to 1 of 1 result