Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jetbrains vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2020-15823
JetBrains YouTrack prior to 2020.2.8873 is vulnerable to SSRF in the Workflow component.
Jetbrains Youtrack
356
VMScore
CVE-2020-15826
In JetBrains TeamCity prior to 2020.1, users are able to assign more permissions than they have.
Jetbrains Teamcity
668
VMScore
CVE-2019-12736
JetBrains Ktor framework prior to 1.2.0-rc does not sanitize the username provided by the user for the LDAP protocol, leading to command injection.
Jetbrains Ktor
NA
CVE-2023-39173
In JetBrains TeamCity prior to 2023.05.2 a token with limited permissions could be used to gain full account access
Jetbrains Teamcity
NA
CVE-2023-39174
In JetBrains TeamCity prior to 2023.05.2 a ReDoS attack was possible via integration with issue trackers
Jetbrains Teamcity
NA
CVE-2023-39175
In JetBrains TeamCity prior to 2023.05.2 reflected XSS via GitHub integration was possible
Jetbrains Teamcity
605
VMScore
CVE-2019-10101
JetBrains Kotlin versions prior to 1.3.30 were resolving artifacts using an http connection during the build process, potentially allowing an MITM attack.
Jetbrains Kotlin
605
VMScore
CVE-2019-10103
JetBrains IntelliJ IDEA projects created using the Kotlin (JS Client/JVM Server) IDE Template were resolving Gradle artifacts using an http connection, potentially allowing an MITM attack. This issue, which was fixed in Kotlin plugin version 1.3.30, is similar to CVE-2019-10101.
Jetbrains Kotlin
668
VMScore
CVE-2019-12867
Certain actions could cause privilege escalation for issue attachments in JetBrains YouTrack. The issue was fixed in 2018.4.49168.
Jetbrains Youtrack
357
VMScore
CVE-2020-24618
In JetBrains YouTrack versions prior to 2020.3.4313, 2020.2.11008, 2020.1.11011, 2019.1.65514, 2019.2.65515, and 2019.3.65516, an attacker can retrieve an issue description without appropriate access.
Jetbrains Youtrack
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-26978
CVE-2024-26982
wireless
CVE-2023-6949
CVE-2024-26980
CVE-2024-32766
CVE-2024-26939
cache poisoning
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »