JetBrains Hub: Sign-in account mismatch without 2-Step Verification

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

6.8

JetBrains Hub: Sign-in account mismatch without 2-Step Verification

CVE-2026-32229

Summary

If you use non-Single Sign-On (SSO) authentication and don't have 2-Step Verification enabled on JetBrains Hub, an attacker could potentially access your account by entering your username or email address and any password. This could allow them to view sensitive information and make changes to your account. To protect yourself, enable 2-Step Verification in JetBrains Hub settings.

Original title

In JetBrains Hub before 2026.1 possible on sign-in account mismatch with non-SSO auth and 2FA disabled

Original description

In JetBrains Hub before 2026.1 possible on sign-in account mismatch with non-SSO auth and 2FA disabled

nvd CVSS3.1 6.8

Vulnerability type

CWE-290

https://www.jetbrains.com/privacy-security/issues-fixed/

Published: 11 Mar 2026 · Updated: 14 Mar 2026 · First seen: 11 Mar 2026