Jetbrains CVEs and Security Vulnerabilities

Filtered by vendor Jetbrains Subscriptions

Search

Switch to Advanced Search (Beta)

Total 453 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2020-27627	1 Jetbrains	1 Teamcity	2024-11-21	6.1 Medium
JetBrains TeamCity before 2020.1.2 was vulnerable to URL injection.
CVE-2020-27626	1 Jetbrains	1 Youtrack	2024-11-21	5.3 Medium
JetBrains YouTrack before 2020.3.5333 was vulnerable to SSRF.
CVE-2020-27625	1 Jetbrains	1 Youtrack	2024-11-21	5.3 Medium
In JetBrains YouTrack before 2020.3.888, notifications might have mentioned inaccessible issues.
CVE-2020-27624	1 Jetbrains	1 Youtrack	2024-11-21	5.3 Medium
JetBrains YouTrack before 2020.3.888 was vulnerable to SSRF.
CVE-2020-27623	1 Jetbrains	1 Ideavim	2024-11-21	7.5 High
JetBrains IdeaVim before version 0.58 might have caused an information leak in limited circumstances.
CVE-2020-27622	1 Jetbrains	1 Intellij Idea	2024-11-21	5.3 Medium
In JetBrains IntelliJ IDEA before 2020.2, the built-in web server could expose information about the IDE version.
CVE-2020-26129	1 Jetbrains	1 Ktor	2024-11-21	6.5 Medium
In JetBrains Ktor before 1.4.1, HTTP request smuggling was possible.
CVE-2020-25210	1 Jetbrains	1 Youtrack	2024-11-21	5.3 Medium
In JetBrains YouTrack before 2020.3.7955, an attacker could access workflow rules without appropriate access grants.
CVE-2020-25209	1 Jetbrains	1 Youtrack	2024-11-21	7.5 High
In JetBrains YouTrack before 2020.3.6638, improper access control for some subresources leads to information disclosure via the REST API.
CVE-2020-25208	1 Jetbrains	1 Youtrack	2024-11-21	5.3 Medium
In JetBrains YouTrack before 2020.4.4701, an attacker could enumerate users via the REST API without appropriate permissions.
CVE-2020-25207	1 Jetbrains	1 Toolbox	2024-11-21	9.8 Critical
JetBrains ToolBox before version 1.18 is vulnerable to Remote Code Execution via a browser protocol handler.
CVE-2020-25013	1 Jetbrains	1 Toolbox	2024-11-21	7.5 High
JetBrains ToolBox before version 1.18 is vulnerable to a Denial of Service attack via a browser protocol handler.
CVE-2020-24618	1 Jetbrains	1 Youtrack	2024-11-21	6.5 Medium
In JetBrains YouTrack versions before 2020.3.4313, 2020.2.11008, 2020.1.11011, 2019.1.65514, 2019.2.65515, and 2019.3.65516, an attacker can retrieve an issue description without appropriate access.
CVE-2020-24366	1 Jetbrains	1 Youtrack	2024-11-21	3.3 Low
Sensitive information could be disclosed in the JetBrains YouTrack application before 2020.2.0 for Android via application backups.
CVE-2020-15831	1 Jetbrains	1 Teamcity	2024-11-21	6.1 Medium
JetBrains TeamCity before 2019.2.3 is vulnerable to reflected XSS in the administration UI.
CVE-2020-15830	1 Jetbrains	1 Teamcity	2024-11-21	6.1 Medium
JetBrains TeamCity before 2019.2.3 is vulnerable to stored XSS in the administration UI.
CVE-2020-15829	1 Jetbrains	1 Teamcity	2024-11-21	5.3 Medium
In JetBrains TeamCity before 2019.2.3, password parameters could be disclosed via build logs.
CVE-2020-15828	1 Jetbrains	1 Teamcity	2024-11-21	6.5 Medium
In JetBrains TeamCity before 2020.1.1, project parameter values can be retrieved by a user without appropriate permissions.
CVE-2020-15827	1 Jetbrains	1 Toolbox	2024-11-21	7.5 High
In JetBrains ToolBox version 1.17 before 1.17.6856, the set of signature verifications omitted the jetbrains-toolbox.exe file.
CVE-2020-15826	1 Jetbrains	1 Teamcity	2024-11-21	4.3 Medium
In JetBrains TeamCity before 2020.1, users are able to assign more permissions than they have.

« first previous Page 17 of 23. next last »