Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jetbrains intellij idea vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2019-9873
In several versions of JetBrains IntelliJ IDEA Ultimate, creating Task Servers configurations leads to saving a cleartext unencrypted record of the server credentials in the IDE configuration files. The issue has been fixed in the following versions: 2019.1, 2018.3.5, 2018.2.8, a...
Jetbrains Intellij Idea
5.3
CVSSv3
CVE-2021-25756
In JetBrains IntelliJ IDEA prior to 2020.2, HTTP links were used for several remote repositories instead of HTTPS.
Jetbrains Intellij Idea
7.8
CVSSv3
CVE-2021-25758
In JetBrains IntelliJ IDEA prior to 2020.3, potentially insecure deserialization of the workspace model could lead to local code execution.
Jetbrains Intellij Idea
3.3
CVSSv3
CVE-2022-37010
In JetBrains IntelliJ IDEA prior to 2022.2 email address validation in the "Git User Name Is Not Defined" dialog was missed
Jetbrains Intellij Idea
9.8
CVSSv3
CVE-2019-9823
In several JetBrains IntelliJ IDEA versions, creating remote run configurations of JavaEE application servers leads to saving a cleartext record of the server credentials in the IDE configuration files. The issue has been fixed in the following versions: 2018.3.5, 2018.2.8, 2018....
Jetbrains Intellij Idea
8.1
CVSSv3
CVE-2019-9872
In several versions of JetBrains IntelliJ IDEA Ultimate, creating run configurations for cloud application servers leads to saving a cleartext unencrypted record of the server credentials in the IDE configuration files. If the Settings Repository plugin was then used and configur...
Jetbrains Intellij Idea
7.5
CVSSv3
CVE-2022-48433
In JetBrains IntelliJ IDEA prior to 2023.1 the NTLM hash could leak through an API method used in the IntelliJ IDEA built-in web server.
Jetbrains Intellij Idea
7.8
CVSSv3
CVE-2022-46824
In JetBrains IntelliJ IDEA prior to 2022.2.4 a buffer overflow in the fsnotifier daemon on macOS was possible.
Jetbrains Intellij Idea
5.5
CVSSv3
CVE-2022-46826
In JetBrains IntelliJ IDEA prior to 2022.3 the built-in web server allowed an arbitrary file to be read by exploiting a path traversal vulnerability.
Jetbrains Intellij Idea
5.5
CVSSv3
CVE-2022-46827
In JetBrains IntelliJ IDEA prior to 2022.3 an XXE attack leading to SSRF via requests to custom plugin repositories was possible.
Jetbrains Intellij Idea
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege
CVE-2022-48762
CVE-2022-48751
CVE-2024-37079
CVE-2024-30848
LFI
man-in-the-middle
CVE-2022-48736
CVE-2024-30103
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »