Vulnerabilities > CVE-2021-25758 - Deserialization of Untrusted Data vulnerability in Jetbrains Intellij Idea

047910
CVSS 7.8 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
local
low complexity
jetbrains
CWE-502

Summary

In JetBrains IntelliJ IDEA before 2020.3, potentially insecure deserialization of the workspace model could lead to local code execution.

Vulnerable Configurations

Part Description Count
Application
Jetbrains
145

Common Weakness Enumeration (CWE)