CVE-2019-14954
First published: Tue Oct 01 2019(Updated: )
JetBrains IntelliJ IDEA before 2019.2 was resolving the markdown plantuml artifact download link via a cleartext http connection.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| JetBrains IntelliJ IDEA | <2019.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2019-14954.
What is the severity of CVE-2019-14954?
The severity of CVE-2019-14954 is medium (5.9).
How does this vulnerability affect JetBrains IntelliJ IDEA?
This vulnerability affects JetBrains IntelliJ IDEA versions prior to 2019.2.
What is the impact of this vulnerability?
The impact of this vulnerability is that JetBrains IntelliJ IDEA resolves the markdown plantuml artifact download link via an insecure cleartext HTTP connection.
Is there a fix available for this vulnerability?
Yes, the fix for this vulnerability is to upgrade JetBrains IntelliJ IDEA to version 2019.2 or later.
- collector/nvd-index
- agent/references
- agent/author
- agent/severity
- agent/type
- agent/event
- agent/weakness
- agent/description
- agent/first-publish-date
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/jetbrains
- canonical/jetbrains intellij idea