CVE-2021-25769
https://notcve.org/view.php?id=CVE-2021-25769
In JetBrains YouTrack before 2020.4.6808, the YouTrack administrator wasn't able to access attachments. En JetBrains YouTrack versiones anteriores a 2020.4.6808, el administrador de YouTrack no sería capaz de acceder a unos archivos adjuntos • https://blog.jetbrains.com https://blog.jetbrains.com/blog/2021/02/03/jetbrains-security-bulletin-q4-2020 •
CVE-2021-25768
https://notcve.org/view.php?id=CVE-2021-25768
In JetBrains YouTrack before 2020.4.4701, permissions for attachments actions were checked improperly. En JetBrains YouTrack versiones anteriores a 2020.4.4701, los permisos para las acciones de archivos adjuntos fueron comprobados inapropiadamente • https://blog.jetbrains.com https://blog.jetbrains.com/blog/2021/02/03/jetbrains-security-bulletin-q4-2020 •
CVE-2021-25767
https://notcve.org/view.php?id=CVE-2021-25767
In JetBrains YouTrack before 2020.6.1767, an issue's existence could be disclosed via YouTrack command execution. En JetBrains YouTrack versiones anteriores a 2020.6.1767, una existencia de un problema podría ser divulgada por medio de una ejecución de comando de YouTrack • https://blog.jetbrains.com https://blog.jetbrains.com/blog/2021/02/03/jetbrains-security-bulletin-q4-2020 •
CVE-2021-25766
https://notcve.org/view.php?id=CVE-2021-25766
In JetBrains YouTrack before 2020.4.4701, improper resource access checks were made. En JetBrains YouTrack versiones anteriores a 2020.4.4701, se hicieron unas comprobaciones de acceso a recursos inapropiados • https://blog.jetbrains.com https://blog.jetbrains.com/blog/2021/02/03/jetbrains-security-bulletin-q4-2020 •
CVE-2020-25208
https://notcve.org/view.php?id=CVE-2020-25208
In JetBrains YouTrack before 2020.4.4701, an attacker could enumerate users via the REST API without appropriate permissions. En JetBrains YouTrack versiones anteriores a 2020.4.4701, un atacante podía enumerar usuarios por medio de la API REST sin los permisos apropiados • https://blog.jetbrains.com https://blog.jetbrains.com/blog/2021/02/03/jetbrains-security-bulletin-q4-2020 • CWE-276: Incorrect Default Permissions •