Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jetbrains vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2020-15825
In JetBrains TeamCity prior to 2020.1, users with the Modify Group permission can elevate other users' privileges.
Jetbrains Teamcity
4.3
CVSSv3
CVE-2020-15826
In JetBrains TeamCity prior to 2020.1, users are able to assign more permissions than they have.
Jetbrains Teamcity
7.5
CVSSv3
CVE-2020-15827
In JetBrains ToolBox version 1.17 prior to 1.17.6856, the set of signature verifications omitted the jetbrains-toolbox.exe file.
Jetbrains Toolbox
5.3
CVSSv3
CVE-2020-15829
In JetBrains TeamCity prior to 2019.2.3, password parameters could be disclosed via build logs.
Jetbrains Teamcity
6.1
CVSSv3
CVE-2020-15831
JetBrains TeamCity prior to 2019.2.3 is vulnerable to reflected XSS in the administration UI.
Jetbrains Teamcity
2.7
CVSSv3
CVE-2022-29035
In JetBrains Ktor Native before version 2.0.0 random values used for nonce generation weren't using SecureRandom implementations
Jetbrains Ktor
6.1
CVSSv3
CVE-2019-19703
In Ktor up to and including 1.2.6, the client resends data from the HTTP Authorization header to a redirect location.
Jetbrains Ktor
7.5
CVSSv3
CVE-2020-7907
In the JetBrains Scala plugin prior to 2019.2.1, some artefact dependencies were resolved over unencrypted connections.
Jetbrains Scala
4.3
CVSSv3
CVE-2020-7908
In JetBrains TeamCity prior to 2019.1.5, reverse tabnabbing was possible on several pages.
Jetbrains Teamcity
7.5
CVSSv3
CVE-2020-7909
In JetBrains TeamCity prior to 2019.1.5, some server-stored passwords could be shown via the web UI.
Jetbrains Teamcity
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
server-side request forgery
CVE-2024-30067
CVE-2024-5553
CVE-2024-30095
IDOR
CVE-2024-35252
CVE-2024-23692
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »