CVE 6.1 MEDIUM

CVE-2025-54527_CVE-2025-54527

August 14, 2025 invoker category_cve
6.1 / 10
MEDIUM
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Description

In JetBrains YouTrack before 2025.2.86935,
2025.2.87167,
2025.3.87341,
2025.3.87344 improper iframe configuration in widget sandbox allows popups to bypass security restrictions

Basic Information

ID CVE-2025-54527
Source JetBrains
Published Jul 28, 2025 at 16:20
Modified Jul 28, 2025 at 17:26

Affected Product

Vendor JetBrains
Product YouTrack
Affected Versions JetBrains YouTrack 0

References

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.