CVE Catalog

CVE-2026-57922

LowCVSS 3.1
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.14%

4th percentile — higher than 4% of all known CVEs

Summary

In JetBrains YouTrack before 2026.2.16593 project settings disclosure via the MCP was possible.

Risk Assessment

The risk involves unauthorized access to project configuration, which may lead to leakage of sensitive information about processes and permissions.

Recommendation

It is recommended to immediately update JetBrains YouTrack to version 2026.2.16593 or later.

Original NVD description (English source)

In JetBrains YouTrack before 2026.2.16593 project settings disclosure via the MCP was possible

Vulnerability data from NVD (NIST) · CISA KEV · EPSS