Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jetbrains intellij idea vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2019-9186
In several JetBrains IntelliJ IDEA versions, a Spring Boot run configuration with the default setting allowed remote malicious users to execute code when the configuration is running, because a JMX server listens on all interfaces (instead of listening on only the localhost inter...
Jetbrains Intellij Idea
4.6
CVSSv2
CVE-2022-24345
In JetBrains IntelliJ IDEA prior to 2021.2.4, local code execution (without permission from a user) upon opening a project was possible.
Jetbrains Intellij Idea
4.6
CVSSv2
CVE-2022-24346
In JetBrains IntelliJ IDEA prior to 2021.3.1, local code execution via RLO (Right-to-Left Override) characters was possible.
Jetbrains Intellij Idea
NA
CVE-2024-24940
In JetBrains IntelliJ IDEA prior to 2023.3.3 path traversal was possible when unpacking archives
Jetbrains Intellij Idea
NA
CVE-2024-24941
In JetBrains IntelliJ IDEA prior to 2023.3.3 a plugin for JetBrains Space was able to send an authentication token to an inappropriate URL
Jetbrains Intellij Idea
4.6
CVSSv2
CVE-2019-18361
JetBrains IntelliJ IDEA prior to 2019.2 allows local user privilege escalation, potentially leading to arbitrary code execution.
Jetbrains Intellij Idea
3.6
CVSSv2
CVE-2022-29818
In JetBrains IntelliJ IDEA prior to 2022.1 origin checks in the internal web server were flawed
Jetbrains Intellij Idea
5
CVSSv2
CVE-2019-9823
In several JetBrains IntelliJ IDEA versions, creating remote run configurations of JavaEE application servers leads to saving a cleartext record of the server credentials in the IDE configuration files. The issue has been fixed in the following versions: 2018.3.5, 2018.2.8, 2018....
Jetbrains Intellij Idea
4.3
CVSSv2
CVE-2019-9872
In several versions of JetBrains IntelliJ IDEA Ultimate, creating run configurations for cloud application servers leads to saving a cleartext unencrypted record of the server credentials in the IDE configuration files. If the Settings Repository plugin was then used and configur...
Jetbrains Intellij Idea
5
CVSSv2
CVE-2019-9873
In several versions of JetBrains IntelliJ IDEA Ultimate, creating Task Servers configurations leads to saving a cleartext unencrypted record of the server credentials in the IDE configuration files. The issue has been fixed in the following versions: 2019.1, 2018.3.5, 2018.2.8, a...
Jetbrains Intellij Idea
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »