Security News > 2024 > June > Users of JetBrains IDEs at risk of GitHub access token compromise (CVE-2024-37051)

JetBrains has fixed a critical vulnerability that could expose users of its integrated development environments to GitHub access token compromise.

CVE-2024-37051 is a vulnerability in the JetBrains GitHub plugin on the IntelliJ open-source platform, and affects all IntelliJ-based IDEs as of 2023.1 onwards that have it enabled and configured/in-use.

"On the 29th of May 2024 we received an external security report with details of a possible vulnerability that would affect pull requests within the IDE. In particular, malicious content as part of a pull request to a GitHub project which would be handled by IntelliJ-based IDEs, would expose access tokens to a third-party host," JetBrains security support team lead Ilya Pleskunin explains.

"The JetBrains GitHub plugin has also been updated with the fix, and previously affected versions have been removed from JetBrains Marketplace," Pleskunin added.

They've also pointed out that GitHub tokens typically act as authentication credentials, allowing access to GitHub resources without requiring further authentication steps.

"If you have actively used the GitHub pull request functionality in the IDE, we strongly advise that you revoke any GitHub tokens the plugin is using. Please note that after the token has been revoked, you will need to set up the plugin again, as all plugin features will stop working."

News URL

https://www.helpnetsecurity.com/2024/06/11/cve-2024-37051/