cbcvebase.
CVE-2026-56142
published 2026-06-19

CVE-2026-56142: In JetBrains Hub before 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 2024.2.148429 privilege escalation by attaching…

PriorityP356high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EPSS
0.42%
34.0th percentile
In JetBrains Hub before 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 2024.2.148429 privilege escalation by attaching authentication details to accounts was possible

Affected

7 ranges
VendorProductVersion rangeFixed in
jetbrainshub< 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 2024.2.1484292026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 2024.2.148429
jetbrainshub>= 2024.2.33606 < 2024.2.1484292024.2.148429
jetbrainshub>= 2024.3.44799 < 2024.3.1484302024.3.148430
jetbrainshub>= 2025.1.62455 < 2025.1.1481202025.1.148120
jetbrainshub>= 2025.2.86069 < 2025.2.1480482025.2.148048
jetbrainshub>= 2025.3.104432 < 2025.3.1480332025.3.148033
jetbrainshub>= 2026.1.12024 < 2026.1.137572026.1.13757
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.