Vulnerability intelligence
CVE-2026-50242
In JetBrains Hub before 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 2024.2.148429 authentication bypass via direct database access leading to administrative access was possible
CVSS Score
10
Critical
EPSS — Exploit Probability
0.4%
Riskier than 33% of all CVEs
Exploitation
Not in CISA KEV
No federal exploitation record
Remediation
Patch available
Vendor fix published
1 article across 1 outlet · first covered Jul 2, 2026 · latest Jul 2, 2026
Coverage timeline
-
JetBrains Patches CVSS 10 Authentication Bypass Affecting 15 Million Developerssecurityonline.info · Jul 2, 2026