Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jetbrains intellij idea vulnerabilities and exploits
(subscribe to this query)
7.4
CVSSv3
CVE-2020-7904
In JetBrains IntelliJ IDEA prior to 2019.3, some Maven repositories were accessed via HTTP instead of HTTPS.
Jetbrains Intellij Idea
7.1
CVSSv3
CVE-2022-29818
In JetBrains IntelliJ IDEA prior to 2022.1 origin checks in the internal web server were flawed
Jetbrains Intellij Idea
6.7
CVSSv3
CVE-2022-29813
In JetBrains IntelliJ IDEA prior to 2022.1 local code execution via custom Pandoc path was possible
Jetbrains Intellij Idea
6.7
CVSSv3
CVE-2022-29815
In JetBrains IntelliJ IDEA prior to 2022.1 local code execution via workspace settings was possible
Jetbrains Intellij Idea
6.1
CVSSv3
CVE-2022-29817
In JetBrains IntelliJ IDEA prior to 2022.1 reflected XSS via error messages in internal web server was possible
Jetbrains Intellij Idea
5.9
CVSSv3
CVE-2019-14954
JetBrains IntelliJ IDEA prior to 2019.2 was resolving the markdown plantuml artifact download link via a cleartext http connection.
Jetbrains Intellij Idea
5.5
CVSSv3
CVE-2022-46826
In JetBrains IntelliJ IDEA prior to 2022.3 the built-in web server allowed an arbitrary file to be read by exploiting a path traversal vulnerability.
Jetbrains Intellij Idea
5.5
CVSSv3
CVE-2022-46827
In JetBrains IntelliJ IDEA prior to 2022.3 an XXE attack leading to SSRF via requests to custom plugin repositories was possible.
Jetbrains Intellij Idea
5.5
CVSSv3
CVE-2022-28651
In JetBrains IntelliJ IDEA prior to 2021.3.3 it was possible to get passwords from protected fields
Jetbrains Intellij Idea
5.3
CVSSv3
CVE-2024-24941
In JetBrains IntelliJ IDEA prior to 2023.3.3 a plugin for JetBrains Space was able to send an authentication token to an inappropriate URL
Jetbrains Intellij Idea
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »