Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jetbrains vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2024-24940
In JetBrains IntelliJ IDEA prior to 2023.3.3 path traversal was possible when unpacking archives
Jetbrains Intellij Idea
5.3
CVSSv3
CVE-2024-24941
In JetBrains IntelliJ IDEA prior to 2023.3.3 a plugin for JetBrains Space was able to send an authentication token to an inappropriate URL
Jetbrains Intellij Idea
5.3
CVSSv3
CVE-2024-24942
In JetBrains TeamCity prior to 2023.11.3 path traversal allowed reading data within JAR archives
Jetbrains Teamcity
5.5
CVSSv3
CVE-2024-24943
In JetBrains Toolbox App prior to 2.2 a DoS attack was possible via a malicious SVG image
Jetbrains Toolbox
9.8
CVSSv3
CVE-2024-23917
In JetBrains TeamCity prior to 2023.11.3 authentication bypass leading to RCE was possible
Jetbrains Teamcity
1 Article
5.4
CVSSv3
CVE-2024-22370
In JetBrains YouTrack prior to 2023.3.22666 stored XSS via markdown was possible
Jetbrains Youtrack
9.8
CVSSv3
CVE-2023-51655
In JetBrains IntelliJ IDEA prior to 2023.3.2 code execution was possible in Untrusted Project mode via a malicious plugin repository specified in the project configuration
Jetbrains Intellij Idea
4.3
CVSSv3
CVE-2023-50871
In JetBrains YouTrack prior to 2023.3.22268 authorization check for inline comments inside thread replies was missed
Jetbrains Youtrack
8.8
CVSSv3
CVE-2023-50870
In JetBrains TeamCity prior to 2023.11.1 a CSRF on login was possible
Jetbrains Teamcity
9.8
CVSSv3
CVE-2023-45612
In JetBrains Ktor prior to 2.3.5 default configuration of ContentNegotiation with XML format was vulnerable to XXE
Jetbrains Ktor
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »