Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jetbrains intellij idea vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2022-48431
In JetBrains IntelliJ IDEA prior to 2023.1 in some cases, Gradle and Maven projects could be imported without the “Trust Project” confirmation.
Jetbrains Intellij Idea
7.5
CVSSv3
CVE-2022-48433
In JetBrains IntelliJ IDEA prior to 2023.1 the NTLM hash could leak through an API method used in the IntelliJ IDEA built-in web server.
Jetbrains Intellij Idea
5.3
CVSSv3
CVE-2020-27622
In JetBrains IntelliJ IDEA prior to 2020.2, the built-in web server could expose information about the IDE version.
Jetbrains Intellij Idea
5.3
CVSSv3
CVE-2019-18361
JetBrains IntelliJ IDEA prior to 2019.2 allows local user privilege escalation, potentially leading to arbitrary code execution.
Jetbrains Intellij Idea
9.8
CVSSv3
CVE-2019-10104
In several JetBrains IntelliJ IDEA Ultimate versions, an Application Server run configuration (for Tomcat, Jetty, Resin, or CloudBees) with the default setting allowed a remote malicious user to execute code when the configuration is running, because a JMX server listened on all ...
Jetbrains Intellij Idea
7.5
CVSSv3
CVE-2021-30504
In JetBrains IntelliJ IDEA prior to 2021.1, DoS was possible because of unbounded resource allocation.
Jetbrains Intellij Idea
3.3
CVSSv3
CVE-2022-37010
In JetBrains IntelliJ IDEA prior to 2022.2 email address validation in the "Git User Name Is Not Defined" dialog was missed
Jetbrains Intellij Idea
7.8
CVSSv3
CVE-2021-25758
In JetBrains IntelliJ IDEA prior to 2020.3, potentially insecure deserialization of the workspace model could lead to local code execution.
Jetbrains Intellij Idea
9.8
CVSSv3
CVE-2020-11690
In JetBrains IntelliJ IDEA prior to 2020.1, the license server could be resolved to an untrusted host in some cases.
Jetbrains Intellij Idea
9.8
CVSSv3
CVE-2019-9186
In several JetBrains IntelliJ IDEA versions, a Spring Boot run configuration with the default setting allowed remote malicious users to execute code when the configuration is running, because a JMX server listens on all interfaces (instead of listening on only the localhost inter...
Jetbrains Intellij Idea
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-44852
CVE-2024-3400
CVE-2024-30129
insecure direct object reference
CVE-2024-12115
CVE-2024-11220
CVE-2024-51378
privilege escalation
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »