Account Mismatch on SignIn in JetBrains Hub <2026.1 (CVE-2026-32229): CVE-2026-32229 March 2026

Account Mismatch on SignIn in JetBrains Hub <2026.1 (CVE-2026-32229)
CVE-2026-32229 Published on March 11, 2026

In JetBrains Hub before 2026.1 possible on sign-in account mismatch with non-SSO auth and 2FA disabled

Vulnerability Analysis

CVE-2026-32229 can be exploited with network access, and requires small amount of user privileges. This vulnerability is consided to have a high level of attack complexity. The potential impact of an exploit of this vulnerability is considered to have a high impact on confidentiality and integrity, and no impact on availability.

Attack Vector:

NETWORK

Attack Complexity:

HIGH

Privileges Required:

LOW

User Interaction:

NONE

Scope:

UNCHANGED

Confidentiality Impact:

HIGH

Integrity Impact:

HIGH

Availability Impact:

NONE

Weakness Type

Authentication Bypass by Spoofing

This attack-focused weakness is caused by improperly implemented authentication schemes that are subject to spoofing attacks.

Products Associated with CVE-2026-32229

Want to know whenever a new CVE is published for JetBrains Hub? stack.watch will email you.

Affected Versions

Version 2025.1 and below 2025.3.128064 is affected.

Account Mismatch on SignIn in JetBrains Hub <2026.1 (CVE-2026-32229)CVE-2026-32229 Published on March 11, 2026

Vulnerability Analysis

Weakness Type

Authentication Bypass by Spoofing

Products Associated with CVE-2026-32229

Affected Versions

Account Mismatch on SignIn in JetBrains Hub <2026.1 (CVE-2026-32229)
CVE-2026-32229 Published on March 11, 2026