Filter
AND

Software

jetbrains teamcity
39
jetbrains intellij idea
26
jetbrains youtrack
20
jetbrains hub
7
jetbrains ktor
5
jetbrains kotlin
4
jetbrains pycharm
4
jetbrains toolbox
4
jetbrains rider
3
jetbrains upsource
2
jetbrains youtrack mobile
2
jetbrains code with me
1
jetbrains dotpeek
1
jetbrains goland
1
jetbrains ideavim
1
jetbrains idetalk
1
jetbrains jetbrains gateway
1
jetbrains resharper
1
jetbrains resharper ultimate
1
jetbrains rubymine
1
jetbrains scala
1
jetbrains space
1
jetbrains webstorm
1

Jetbrains YoutrackIn JetBrains YouTrack before 2023.1.10518 a DoS attack was possible via Helpdesk forms

high
7.5
First published (updated )
CVE-2023-35053

Jetbrains TeamcityIn JetBrains TeamCity before 2024.12 access tokens were not revoked after removing user roles

high
8.8
First published (updated )
CVE-2024-56351

Jetbrains TeamcityXEE

high
7.1
First published (updated )
CVE-2024-56356

Jetbrains TeamcityXEE

high
8.1
EPSS
0.04%
First published (updated )
CVE-2024-31139

Jetbrains TeamcityIn JetBrains TeamCity before 2024.03 2FA could be bypassed by providing a special URL parameter

high
7.4
EPSS
0.04%
First published (updated )
CVE-2024-31136

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Jetbrains TeamcityIn JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5, 2024.03.2 a third-party age…

high
8.1
First published (updated )
CVE-2024-36365

Jetbrains TeamcityIn JetBrains TeamCity before 2023.11 users with access to the agent machine might obtain permissions…

high
7.8
EPSS
0.04%
First published (updated )
CVE-2024-29880

Jetbrains TeamcityPath Traversal

high
7.3
EPSS
0.90%
First published (updated )
CVE-2024-27199

JetBrains IntelliJ IDEACode Injection

high
7.8
First published (updated )
CVE-2022-47896

JetBrains IntelliJ IDEAIn JetBrains IntelliJ IDEA before 2022.3.1 the "Validate JSP File" action used the HTTP protocol to …

high
7.5
First published (updated )
CVE-2022-47895

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

JetBrains IntelliJ IDEAMalicious File Upload

high
7.8
First published (updated )
CVE-2022-46828

JetBrains IntelliJ IDEABuffer Overflow

high
7.8
First published (updated )
CVE-2022-46824

JetBrains JetBrains GatewayIn JetBrains JetBrains Gateway before 2022.3 a client could connect without a valid token if the hos…

high
8.8
First published (updated )
CVE-2022-46829

JetBrains HubIn JetBrains Hub before 2022.3.15181 Throttling was missed when sending emails to a particular email…

high
7.5
First published (updated )
CVE-2022-45471

Jetbrains TeamcityIn JetBrains TeamCity version before 2022.10, Password parameters could be exposed in the build log …

high
7.5
First published (updated )
CVE-2022-44624

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Jetbrains TeamcityIn JetBrains TeamCity version before 2022.10, Project Viewer could see scrambled secure values in th…

high
7.5
First published (updated )
CVE-2022-44623

JetBrains KtorIn JetBrains Ktor before 1.6.4, nonce verification during the OAuth2 authentication process is imple…

high
7.5
First published (updated )
CVE-2021-43203

Jetbrains TeamcityIn JetBrains TeamCity before 2021.1, information disclosure via the Docker Registry connection dialo…

high
7.5
First published (updated )
CVE-2021-43196

JetBrains YouTrack MobileIn JetBrains YouTrack Mobile before 2021.2, access token protection on iOS is incomplete.

high
7.5
First published (updated )
CVE-2021-43188

JetBrains YouTrack MobileIn JetBrains YouTrack Mobile before 2021.2, access token protection on Android is incomplete.

high
7.5
First published (updated )
CVE-2021-43189

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

JetBrains HubIn JetBrains Hub before 2021.1.13415, a DoS via user information is possible.

high
7.5
First published (updated )
CVE-2021-43182

JetBrains HubIn JetBrains Hub before 2021.1.13690, information disclosure via avatar metadata is possible.

high
7.5
First published (updated )
CVE-2021-43180

Jetbrains YoutrackIn JetBrains YouTrack before 2024.3.47197 insecure plugin iframe allowed arbitrary JavaScript execut…

high
8.1
First published (updated )
CVE-2024-49579

Jetbrains YoutrackIn JetBrains YouTrack before 2023.1.16597 captcha was not properly validated for Helpdesk forms

high
7.3
First published (updated )
CVE-2023-38068

Jetbrains YoutrackIn JetBrains YouTrack before 2024.3.47707 potential ReDoS exploit was possible via email header pars…

high
7.5
First published (updated )
CVE-2024-50574

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

JetBrains IntelliJ IDEAIn JetBrains IntelliJ IDEA before 2023.2 plugin for Space was requesting excessive permissions

high
7.8
First published (updated )
CVE-2023-39261

Jetbrains TeamcityIn JetBrains TeamCity before 2023.05.2 a token with limited permissions could be used to gain full a…

high
8.8
First published (updated )
CVE-2023-39173

Jetbrains TeamcityIn JetBrains TeamCity before 2023.05.2 a ReDoS attack was possible via integration with issue tracke…

high
7.5
First published (updated )
CVE-2023-39174

Jetbrains TeamcityPath Traversal

high
7.5
First published (updated )
CVE-2024-47949

Jetbrains TeamcityPath Traversal

high
7.5
First published (updated )
CVE-2024-47948

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203