Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jetbrains vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2021-43194
In JetBrains TeamCity prior to 2021.1.2, user enumeration was possible.
Jetbrains Teamcity
5.3
CVSSv3
CVE-2021-43195
In JetBrains TeamCity prior to 2021.1.2, some HTTP security headers were missing.
Jetbrains Teamcity
7.5
CVSSv3
CVE-2021-43196
In JetBrains TeamCity prior to 2021.1, information disclosure via the Docker Registry connection dialog is possible.
Jetbrains Teamcity
6.1
CVSSv3
CVE-2021-43197
In JetBrains TeamCity prior to 2021.1.2, email notifications could include unescaped HTML for XSS.
Jetbrains Teamcity
5.3
CVSSv3
CVE-2021-43201
In JetBrains TeamCity prior to 2021.1.3, a newly created project could take settings from an already deleted project.
Jetbrains Teamcity
2.7
CVSSv3
CVE-2022-29035
In JetBrains Ktor Native before version 2.0.0 random values used for nonce generation weren't using SecureRandom implementations
Jetbrains Ktor
7.5
CVSSv3
CVE-2022-24327
In JetBrains Hub prior to 2021.1.13890, integration with JetBrains Account exposed an API key with excessive permissions.
Jetbrains Hub
6.1
CVSSv3
CVE-2022-24330
In JetBrains TeamCity prior to 2021.2.1, a redirection to an external site was possible.
Jetbrains Teamcity
9.8
CVSSv3
CVE-2022-24331
In JetBrains TeamCity prior to 2021.1.4, GitLab authentication impersonation was possible.
Jetbrains Teamcity
5.3
CVSSv3
CVE-2022-24332
In JetBrains TeamCity prior to 2021.2, a logout action didn't remove a Remember Me cookie.
Jetbrains Teamcity
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »