CVE-2022-46826: Path Traversal
First published: Thu Dec 08 2022(Updated: )
In JetBrains IntelliJ IDEA before 2022.3 the built-in web server allowed an arbitrary file to be read by exploiting a path traversal vulnerability.
Credit: security@jetbrains.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| JetBrains IntelliJ IDEA | <2022.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this JetBrains IntelliJ IDEA vulnerability?
The vulnerability ID for this JetBrains IntelliJ IDEA vulnerability is CVE-2022-46826.
What is the severity rating of CVE-2022-46826?
The severity rating of CVE-2022-46826 is medium (5.5).
What is the affected software for CVE-2022-46826?
The affected software for CVE-2022-46826 is JetBrains IntelliJ IDEA before version 2022.3.
What is the description of CVE-2022-46826?
CVE-2022-46826 is a path traversal vulnerability in the built-in web server of JetBrains IntelliJ IDEA before version 2022.3, which allows an attacker to read an arbitrary file.
Is there a fix available for CVE-2022-46826?
Yes, JetBrains has released a fix for CVE-2022-46826. It is recommended to update to version 2022.3 or later to mitigate this vulnerability.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/author
- agent/last-modified-date
- agent/weakness
- agent/references
- agent/first-publish-date
- agent/event
- agent/tags
- agent/description
- vendor/jetbrains
- canonical/jetbrains intellij idea