Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jetbrains vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2022-46826
In JetBrains IntelliJ IDEA prior to 2022.3 the built-in web server allowed an arbitrary file to be read by exploiting a path traversal vulnerability.
Jetbrains Intellij Idea
5.5
CVSSv3
CVE-2022-46827
In JetBrains IntelliJ IDEA prior to 2022.3 an XXE attack leading to SSRF via requests to custom plugin repositories was possible.
Jetbrains Intellij Idea
7.8
CVSSv3
CVE-2022-46828
In JetBrains IntelliJ IDEA prior to 2022.3 a DYLIB injection on macOS was possible.
Jetbrains Intellij Idea
8.8
CVSSv3
CVE-2022-46829
In JetBrains JetBrains Gateway prior to 2022.3 a client could connect without a valid token if the host consented.
Jetbrains Jetbrains Gateway
4.9
CVSSv3
CVE-2022-46831
In JetBrains TeamCity between 2022.10 and 2022.10.1 connecting to AWS using the "Default Credential Provider Chain" allowed TeamCity project administrators to access AWS resources normally limited to TeamCity system administrators.
Jetbrains Teamcity
7.5
CVSSv3
CVE-2022-45471
In JetBrains Hub prior to 2022.3.15181 Throttling was missed when sending emails to a particular email address
Jetbrains Hub
5.3
CVSSv3
CVE-2022-44622
In JetBrains TeamCity version between 2021.2 and 2022.10 access permissions for secure token health items were excessive
Jetbrains Teamcity
7.5
CVSSv3
CVE-2022-44623
In JetBrains TeamCity version prior to 2022.10, Project Viewer could see scrambled secure values in the MetaRunner settings
Jetbrains Teamcity
7.5
CVSSv3
CVE-2022-44624
In JetBrains TeamCity version prior to 2022.10, Password parameters could be exposed in the build log if they contained special characters
Jetbrains Teamcity
5.3
CVSSv3
CVE-2022-44646
In JetBrains TeamCity version prior to 2022.10, no audit items were added upon editing a user's settings
Jetbrains Teamcity
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »