) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
- Results Type: Overview
- Keyword (text search): jetbrains
- Search Type: Search All
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2022-37396 |
In JetBrains Rider before 2022.2 Trust and Open Project dialog could be bypassed, leading to local code execution Published: August 03, 2022; 12:15:08 PM -0400 |
V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2022-37010 |
In JetBrains IntelliJ IDEA before 2022.2 email address validation in the "Git User Name Is Not Defined" dialog was missed Published: July 28, 2022; 7:15:07 AM -0400 |
V3.1: 3.3 LOW V2.0:(not available) |
| CVE-2022-37009 |
In JetBrains IntelliJ IDEA before 2022.2 local code execution via a Vagrant executable was possible Published: July 28, 2022; 7:15:07 AM -0400 |
V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2022-36322 |
In JetBrains TeamCity before 2022.04.2 build parameter injection was possible Published: July 20, 2022; 9:15:08 AM -0400 |
V3.1: 8.8 HIGH V2.0:(not available) |
| CVE-2022-36321 |
In JetBrains TeamCity before 2022.04.2 the private SSH key could be written to the build log in some cases Published: July 20, 2022; 9:15:08 AM -0400 |
V3.1: 6.5 MEDIUM V2.0:(not available) |
| CVE-2022-34894 |
In JetBrains Hub before 2022.2.14799, insufficient access control allowed the hijacking of untrusted services Published: July 01, 2022; 6:15:10 AM -0400 |
V3.1: 5.3 MEDIUM V2.0: 5.0 MEDIUM |
| CVE-2022-29930 |
SHA1 implementation in JetBrains Ktor Native 2.0.0 was returning the same value. The issue was fixed in Ktor version 2.0.1. Published: May 12, 2022; 5:15:14 AM -0400 |
V3.1: 4.9 MEDIUM V2.0: 4.0 MEDIUM |
| CVE-2022-29929 |
In JetBrains TeamCity before 2022.04 potential XSS via Referrer header was possible Published: May 12, 2022; 5:15:14 AM -0400 |
V3.1: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
| CVE-2022-29928 |
In JetBrains TeamCity before 2022.04 leak of secrets in TeamCity agent logs was possible Published: May 12, 2022; 5:15:14 AM -0400 |
V3.1: 4.9 MEDIUM V2.0: 4.0 MEDIUM |
| CVE-2022-29927 |
In JetBrains TeamCity before 2022.04 reflected XSS on the Build Chain Status page was possible Published: May 12, 2022; 5:15:14 AM -0400 |
V3.1: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
| CVE-2022-29821 |
In JetBrains Rider before 2022.1 local code execution via links in ReSharper Quick Documentation was possible Published: April 28, 2022; 6:15:08 AM -0400 |
V3.1: 7.7 HIGH V2.0: 4.4 MEDIUM |
| CVE-2022-29820 |
In JetBrains PyCharm before 2022.1 exposure of the debugger port to the internal network was possible Published: April 28, 2022; 6:15:08 AM -0400 |
V3.1: 3.5 LOW V2.0: 3.3 LOW |
| CVE-2022-29819 |
In JetBrains IntelliJ IDEA before 2022.1 local code execution via links in Quick Documentation was possible Published: April 28, 2022; 6:15:08 AM -0400 |
V3.1: 7.7 HIGH V2.0: 4.4 MEDIUM |
| CVE-2022-29818 |
In JetBrains IntelliJ IDEA before 2022.1 origin checks in the internal web server were flawed Published: April 28, 2022; 6:15:08 AM -0400 |
V3.1: 7.1 HIGH V2.0: 3.6 LOW |
| CVE-2022-29817 |
In JetBrains IntelliJ IDEA before 2022.1 reflected XSS via error messages in internal web server was possible Published: April 28, 2022; 6:15:08 AM -0400 |
V3.1: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
| CVE-2022-29816 |
In JetBrains IntelliJ IDEA before 2022.1 HTML injection into IDE messages was possible Published: April 28, 2022; 6:15:08 AM -0400 |
V3.1: 3.2 LOW V2.0: 2.1 LOW |
| CVE-2022-29815 |
In JetBrains IntelliJ IDEA before 2022.1 local code execution via workspace settings was possible Published: April 28, 2022; 6:15:08 AM -0400 |
V3.1: 6.7 MEDIUM V2.0: 4.6 MEDIUM |
| CVE-2022-29814 |
In JetBrains IntelliJ IDEA before 2022.1 local code execution via HTML descriptions in custom JSON schemas was possible Published: April 28, 2022; 6:15:08 AM -0400 |
V3.1: 7.7 HIGH V2.0: 4.4 MEDIUM |
| CVE-2022-29813 |
In JetBrains IntelliJ IDEA before 2022.1 local code execution via custom Pandoc path was possible Published: April 28, 2022; 6:15:08 AM -0400 |
V3.1: 6.7 MEDIUM V2.0: 4.6 MEDIUM |
| CVE-2022-29812 |
In JetBrains IntelliJ IDEA before 2022.1 notification mechanisms about using Unicode directionality formatting characters were insufficient Published: April 28, 2022; 6:15:08 AM -0400 |
V3.1: 2.3 LOW V2.0: 2.1 LOW |