CVE-2024-50577 in YouTrackinfo

Summary

by MITRE • 10/28/2024

In JetBrains YouTrack before 2024.3.47707 stored XSS was possible via Angular template injection in Hub settings

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Analysis

by VulDB Data Team • 03/02/2025

This vulnerability exists in JetBrains YouTrack prior to version 2024.3.47707 where a stored cross-site scripting flaw was discovered through Angular template injection in the Hub settings functionality. The issue stems from insufficient input validation and sanitization of user-provided data within the Angular template processing engine, allowing malicious actors to inject malicious scripts that persist in the application's database and execute in the context of other users' browsers.

The technical exploitation occurs when administrators or users with appropriate privileges configure Hub settings that utilize Angular templates for dynamic content rendering. Attackers can craft malicious payloads containing script tags or JavaScript code within template parameters that get stored in the system's configuration database. When other users access the affected Hub settings page, the stored malicious code executes in their browser context, potentially leading to session hijacking, credential theft, or further compromise of the application environment.

This vulnerability aligns with CWE-79 which specifically addresses cross-site scripting flaws, and represents a stored XSS variant where the malicious payload is permanently stored within the application's data storage rather than being reflected in a single request. The impact extends beyond simple script execution as it can enable attackers to escalate privileges, access sensitive administrative functions, or exfiltrate confidential data from the YouTrack instance. The Angular template injection aspect demonstrates how modern web frameworks with dynamic template processing can introduce unexpected attack vectors when proper sanitization measures are not implemented.

The operational implications are significant for organizations relying on YouTrack for issue tracking and project management, as compromised administrators or regular users could gain unauthorized access to sensitive project data, modify configurations, or disrupt workflow processes. Attackers could leverage this vulnerability to establish persistent access points within the development environment, particularly in organizations where YouTrack serves as a central hub for team collaboration and issue management.

Organizations should immediately upgrade to JetBrains YouTrack version 2024.3.47707 or later to remediate this vulnerability. Additional mitigations include implementing strict input validation for all user-provided data in Hub settings, enabling Content Security Policy headers to restrict script execution, and conducting regular security audits of template-based configurations. Security teams should also monitor for suspicious configuration changes in Hub settings and implement network-based detection mechanisms to identify potential exploitation attempts. This vulnerability exemplifies the importance of proper input sanitization in modern web applications and aligns with ATT&CK technique T1566.001 for initial access through malicious inputs, highlighting the need for comprehensive security controls throughout the application lifecycle.

Responsible

JetBrains

Reservation

10/24/2024

Disclosure

10/28/2024

Moderation

accepted

CPE

ready

EPSS

0.00299

KEV

no

Activities

very low

Sources

Do you want to use VulDB in your project?

Use the official API to access entries easily!