Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jetbrains vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2021-43196
In JetBrains TeamCity prior to 2021.1, information disclosure via the Docker Registry connection dialog is possible.
Jetbrains Teamcity
6.1
CVSSv3
CVE-2021-43197
In JetBrains TeamCity prior to 2021.1.2, email notifications could include unescaped HTML for XSS.
Jetbrains Teamcity
5.4
CVSSv3
CVE-2021-43198
In JetBrains TeamCity prior to 2021.1.2, stored XSS is possible.
Jetbrains Teamcity
5.3
CVSSv3
CVE-2021-43199
In JetBrains TeamCity prior to 2021.1.2, permission checks in the Create Patch functionality are insufficient.
Jetbrains Teamcity
9.8
CVSSv3
CVE-2021-43200
In JetBrains TeamCity prior to 2021.1.2, permission checks in the Agent Push functionality were insufficient.
Jetbrains Teamcity
5.3
CVSSv3
CVE-2021-43201
In JetBrains TeamCity prior to 2021.1.3, a newly created project could take settings from an already deleted project.
Jetbrains Teamcity
9.8
CVSSv3
CVE-2021-43202
In JetBrains TeamCity prior to 2021.1.3, the X-Frame-Options header is missing in some cases.
Jetbrains Teamcity
7.5
CVSSv3
CVE-2021-43203
In JetBrains Ktor prior to 1.6.4, nonce verification during the OAuth2 authentication process is implemented improperly.
Jetbrains Ktor
7.5
CVSSv3
CVE-2021-37548
In JetBrains TeamCity prior to 2021.1, passwords in cleartext sometimes could be stored in VCS.
Jetbrains Teamcity
5.3
CVSSv3
CVE-2021-37551
In JetBrains YouTrack prior to 2021.2.16363, system user passwords were hashed with SHA-256.
Jetbrains Youtrack
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
hardcoded
arbitrary code
CVE-2024-2404
CVE-2024-21111
CVE-2024-28627
CVE-2024-4073
information disclosure
CVE-2024-32780
CVE-2024-4040
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »