CVE Catalog
CVE-2026-57923
MediumCVSS 5.3Exploitation Probability (EPSS)
Low risk0.16%
5th percentile — higher than 5% of all known CVEs
Summary
In JetBrains YouTrack before 2026.2.16593, improper authorization in the app configurations endpoint allowed unauthorized modification of project settings.
Risk Assessment
The risk involves the possibility of changing project configuration by an unauthorized user, which could lead to data integrity violations or unauthorized changes in project management processes.
Recommendation
It is recommended to immediately update JetBrains YouTrack to version 2026.2.16593 or later, which includes a fix for this vulnerability.
Original NVD description (English source)
In JetBrains YouTrack before 2026.2.16593 improper authorisation in the app configurations endpoint allowed modifying project settings

