Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jetbrains intellij idea vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-24940
In JetBrains IntelliJ IDEA prior to 2023.3.3 path traversal was possible when unpacking archives
Jetbrains Intellij Idea
694
VMScore
CVE-2017-8316
IntelliJ IDEA XML parser was found vulnerable to XML External Entity attack, an attacker can exploit the vulnerability by implementing malicious code on both Androidmanifest.xml.
Jetbrains Intellij Idea
NA
CVE-2022-37010
In JetBrains IntelliJ IDEA prior to 2022.2 email address validation in the "Git User Name Is Not Defined" dialog was missed
Jetbrains Intellij Idea
NA
CVE-2022-46825
In JetBrains IntelliJ IDEA prior to 2022.3 the built-in web server leaked information about open projects.
Jetbrains Intellij Idea
NA
CVE-2022-46827
In JetBrains IntelliJ IDEA prior to 2022.3 an XXE attack leading to SSRF via requests to custom plugin repositories was possible.
Jetbrains Intellij Idea
NA
CVE-2023-38069
In JetBrains IntelliJ IDEA prior to 2023.1.4 license dialog could be suppressed in certain cases
Jetbrains Intellij Idea
NA
CVE-2023-51655
In JetBrains IntelliJ IDEA prior to 2023.3.2 code execution was possible in Untrusted Project mode via a malicious plugin repository specified in the project configuration
Jetbrains Intellij Idea
668
VMScore
CVE-2020-11690
In JetBrains IntelliJ IDEA prior to 2020.1, the license server could be resolved to an untrusted host in some cases.
Jetbrains Intellij Idea
445
VMScore
CVE-2019-9823
In several JetBrains IntelliJ IDEA versions, creating remote run configurations of JavaEE application servers leads to saving a cleartext record of the server credentials in the IDE configuration files. The issue has been fixed in the following versions: 2018.3.5, 2018.2.8, 2018....
Jetbrains Intellij Idea
NA
CVE-2022-46826
In JetBrains IntelliJ IDEA prior to 2022.3 the built-in web server allowed an arbitrary file to be read by exploiting a path traversal vulnerability.
Jetbrains Intellij Idea
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »