CVE-2022-46828: Malicious File Upload
First published: Thu Dec 08 2022(Updated: )
In JetBrains IntelliJ IDEA before 2022.3 a DYLIB injection on macOS was possible.
Credit: security@jetbrains.com cve@jetbrains.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| JetBrains IntelliJ IDEA | <2022.3 | |
| Apple macOS | ||
| All of | ||
| JetBrains IntelliJ IDEA | <2022.3 | |
| Apple macOS |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this IntelliJ IDEA vulnerability?
The vulnerability ID for this IntelliJ IDEA vulnerability is CVE-2022-46828.
What was the severity of the IntelliJ IDEA vulnerability?
The severity of the IntelliJ IDEA vulnerability was high, with a CVSS score of 7.8.
What was the affected software for this vulnerability?
The affected software for this vulnerability was JetBrains IntelliJ IDEA before version 2022.3 on macOS.
What was the vulnerability in IntelliJ IDEA on macOS?
The vulnerability in IntelliJ IDEA on macOS was a DYLIB injection.
How can I fix the IntelliJ IDEA vulnerability?
To fix the IntelliJ IDEA vulnerability, you should update to the latest version of JetBrains IntelliJ IDEA (version 2022.3 or above).
- collector/nvd-index
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/weakness
- agent/references
- agent/first-publish-date
- agent/description
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/last-modified-date
- agent/author
- agent/tags
- agent/softwarecombine
- agent/event
- vendor/jetbrains
- canonical/jetbrains intellij idea
- vendor/apple
- canonical/apple macos