Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jetbrains intellij idea vulnerabilities and exploits
(subscribe to this query)
7.4
CVSSv3
CVE-2020-7904
In JetBrains IntelliJ IDEA prior to 2019.3, some Maven repositories were accessed via HTTP instead of HTTPS.
Jetbrains Intellij Idea
7.1
CVSSv3
CVE-2022-29818
In JetBrains IntelliJ IDEA prior to 2022.1 origin checks in the internal web server were flawed
Jetbrains Intellij Idea
6.7
CVSSv3
CVE-2022-29813
In JetBrains IntelliJ IDEA prior to 2022.1 local code execution via custom Pandoc path was possible
Jetbrains Intellij Idea
6.7
CVSSv3
CVE-2022-29815
In JetBrains IntelliJ IDEA prior to 2022.1 local code execution via workspace settings was possible
Jetbrains Intellij Idea
6.1
CVSSv3
CVE-2022-29817
In JetBrains IntelliJ IDEA prior to 2022.1 reflected XSS via error messages in internal web server was possible
Jetbrains Intellij Idea
5.9
CVSSv3
CVE-2019-14954
JetBrains IntelliJ IDEA prior to 2019.2 was resolving the markdown plantuml artifact download link via a cleartext http connection.
Jetbrains Intellij Idea
5.5
CVSSv3
CVE-2022-46826
In JetBrains IntelliJ IDEA prior to 2022.3 the built-in web server allowed an arbitrary file to be read by exploiting a path traversal vulnerability.
Jetbrains Intellij Idea
5.5
CVSSv3
CVE-2022-46827
In JetBrains IntelliJ IDEA prior to 2022.3 an XXE attack leading to SSRF via requests to custom plugin repositories was possible.
Jetbrains Intellij Idea
5.5
CVSSv3
CVE-2022-28651
In JetBrains IntelliJ IDEA prior to 2021.3.3 it was possible to get passwords from protected fields
Jetbrains Intellij Idea
5.3
CVSSv3
CVE-2024-24941
In JetBrains IntelliJ IDEA prior to 2023.3.3 a plugin for JetBrains Space was able to send an authentication token to an inappropriate URL
Jetbrains Intellij Idea
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673
CVE-2024-36674
CVE-2024-27348
unspecified
CVE-2024-24919
CVE-2024-4870
malicious code
CVE-2024-2019
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »