Vulnerability intelligence
CVE-2026-56142
In JetBrains Hub before 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 2024.2.148429 privilege escalation by attaching authentication details to accounts was possible
CVSS Score
9.6
Critical
EPSS — Exploit Probability
0.4%
Riskier than 34% of all CVEs
Exploitation
Not in CISA KEV
No federal exploitation record
Remediation
Patch available
Vendor fix published
1 article across 1 outlet · first covered Jul 2, 2026 · latest Jul 2, 2026
Coverage timeline
-
JetBrains Patches CVSS 10 Authentication Bypass Affecting 15 Million Developerssecurityonline.info · Jul 2, 2026