CVE Catalog

CVE-2026-56142

CriticalCVSS 9.9
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.42%

33th percentile — higher than 33% of all known CVEs

Summary

In JetBrains Hub before versions 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, and 2024.2.148429, a privilege escalation vulnerability existed by attaching authentication details to accounts.

Risk Assessment

An attacker could gain unauthorized access to accounts with higher privileges, potentially leading to system compromise or data breach.

Recommendation

Immediately update JetBrains Hub to one of the patched versions listed.

Original NVD description (English source)

In JetBrains Hub before 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 2024.2.148429 privilege escalation by attaching authentication details to accounts was possible

Vulnerability data from NVD (NIST) · CISA KEV · EPSS