CVE-2026-32745

Description

In JetBrains Datalore before 2026.1 session hijacking was possible due to missing secure attribute for cookie settings

CVSS breakdown

Affected products

• JetBrains / Datalore0 – 2026.1

References

• MISChttps://www.jetbrains.com/privacy-security/issues-fixed/