Filters
Software
jetbrains teamcity
32
jetbrains intellij idea
26
jetbrains youtrack
20
jetbrains hub
7
jetbrains ktor
5
jetbrains kotlin
4
jetbrains pycharm
4
jetbrains toolbox
4
jetbrains rider
3
jetbrains upsource
2
jetbrains youtrack mobile
2
jetbrains code with me
1
jetbrains dotpeek
1
jetbrains goland
1
jetbrains ideavim
1
jetbrains idetalk
1
jetbrains resharper
1
jetbrains resharper ultimate
1
jetbrains rubymine
1
jetbrains scala
1
jetbrains space
1
jetbrains webstorm
1
Jetbrains YoutrackIn JetBrains YouTrack before 2024.3.47707 potential ReDoS exploit was possible via email header pars…
7.5
First published (updated )
Jetbrains YoutrackIn JetBrains YouTrack before 2024.3.47197 insecure plugin iframe allowed arbitrary JavaScript execut…
8.1
First published (updated )
Jetbrains TeamcityIn JetBrains TeamCity before 2024.07.1 possible privilege escalation due to incorrect directory perm…
7.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Jetbrains TeamcityIn JetBrains TeamCity before 2024.07 an OAuth code for JetBrains Space could be stolen via Space App…
7.5
First published (updated )
Jetbrains YoutrackIn JetBrains YouTrack before 2024.2.34646 user access token was sent to the third-party site
7.5
First published (updated )
Jetbrains YoutrackIn JetBrains YouTrack before 2024.2.34646 user without appropriate permissions could enable the auto…
8.1
First published (updated )
SolarWinds Access Rights ManagerSolarWinds Access Rights Manager (ARM) Deserialization of Untrusted Data Remote Code Execution
8
EPSS
0.04%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
JetBrains IntelliJ IDEAIn JetBrains IntelliJ IDEA before 2023.2 plugin for Space was requesting excessive permissions
7.8
First published (updated )
Jetbrains TeamcityIn JetBrains TeamCity before 2023.05.2 a ReDoS attack was possible via integration with issue tracke…
7.5
First published (updated )
Jetbrains TeamcityIn JetBrains TeamCity before 2023.05.2 a token with limited permissions could be used to gain full a…
8.8
First published (updated )
Jetbrains YoutrackIn JetBrains YouTrack before 2023.1.16597 captcha was not properly validated for Helpdesk forms
7.3
First published (updated )
Jetbrains YoutrackIn JetBrains YouTrack before 2023.1.10518 a DoS attack was possible via Helpdesk forms
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Jetbrains TeamcityIn JetBrains TeamCity before 2023.05 a specific endpoint was vulnerable to brute force attacks
7.5
First published (updated )
Jetbrains ToolboxIn JetBrains Toolbox App before 1.28 a DYLIB injection on macOS was possible
7.8
First published (updated )
JetBrains IntelliJ IDEAIn JetBrains IntelliJ IDEA before 2023.1 the NTLM hash could leak through an API method used in the …
7.5
First published (updated )
JetBrains IntelliJ IDEAIn JetBrains IntelliJ IDEA before 2023.1 the bundled version of Chromium wasn't sandboxed.
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
JetBrains IntelliJ IDEAIn JetBrains IntelliJ IDEA before 2023.1 in some cases, Gradle and Maven projects could be imported …
7.8
First published (updated )
JetBrains IntelliJ IDEAIn JetBrains IntelliJ IDEA before 2022.3.1 the "Validate JSP File" action used the HTTP protocol to …
7.5
First published (updated )
CVE-2022-46829In JetBrains JetBrains Gateway before 2022.3 a client could connect without a valid token if the hos…
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
JetBrains HubIn JetBrains Hub before 2022.3.15181 Throttling was missed when sending emails to a particular email…
7.5
First published (updated )
Jetbrains TeamcityIn JetBrains TeamCity version before 2022.10, Password parameters could be exposed in the build log …
7.5
First published (updated )
Jetbrains TeamcityIn JetBrains TeamCity version before 2022.10, Project Viewer could see scrambled secure values in th…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
JetBrains IntelliJ IDEAThe installer of JetBrains IntelliJ IDEA before 2022.2.2 was vulnerable to EXE search order hijackin…
7.8
First published (updated )
Jetbrains TeamcityIn JetBrains TeamCity before 2022.04.2 build parameter injection was possible
8.8
First published (updated )
JetBrains KtorSHA1 implementation in JetBrains Ktor Native 2.0.0 was returning the same value. The issue was fixed…
8.7
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
JetBrains IntelliJ IDEAIn JetBrains IntelliJ IDEA before 2022.1 origin checks in the internal web server were flawed
7.1
First published (updated )
JetBrains IntelliJ IDEAIn JetBrains IntelliJ IDEA before 2021.3.3 it was possible to get passwords from protected fields
8.4
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Jetbrains TeamcityIn JetBrains TeamCity before 2021.2.3, environment variables of the "password" type could be logged …
7.5
First published (updated )
JetBrains IntelliJ IDEAIn JetBrains IntelliJ IDEA before 2021.3.1, local code execution via RLO (Right-to-Left Override) ch…
7.8
First published (updated )
JetBrains IntelliJ IDEAIn JetBrains IntelliJ IDEA before 2021.2.4, local code execution (without permission from a user) up…
7.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Jetbrains TeamcityIn JetBrains TeamCity before 2021.2.1, editing a user account to change its password didn't terminat…
7.5
First published (updated )
Jetbrains TeamcityJetBrains TeamCity before 2021.2 was vulnerable to a Time-of-check/Time-of-use (TOCTOU) race-conditi…
8.1
First published (updated )
JetBrains HubIn JetBrains Hub before 2021.1.13890, integration with JetBrains Account exposed an API key with exc…
7.5
First published (updated )
JetBrains HubIn JetBrains Hub before 2021.1.13690, information disclosure via avatar metadata is possible.
7.5
First published (updated )
JetBrains HubIn JetBrains Hub before 2021.1.13415, a DoS via user information is possible.
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.