Vulnerabilities > CVE-2021-45977 - Unspecified vulnerability in Jetbrains products

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

jetbrains

NVD

Published: 2022-02-25

Updated: 2022-03-08

Summary

JetBrains IntelliJ IDEA 2021.3.1 Preview, IntelliJ IDEA 2021.3.1 RC, PyCharm Professional 2021.3.1 RC, GoLand 2021.3.1, PhpStorm 2021.3.1 Preview, PhpStorm 2021.3.1 RC, RubyMine 2021.3.1 Preview, RubyMine 2021.3.1 RC, CLion 2021.3.1, WebStorm 2021.3.1 Preview, and WebStorm 2021.3.1 RC (used as Remote Development backend IDEs) bind to the 0.0.0.0 IP address. The fixed versions are: IntelliJ IDEA 2021.3.1, PyCharm Professional 2021.3.1, GoLand 2021.3.2, PhpStorm 2021.3.1 (213.6461.83), RubyMine 2021.3.1, CLion 2021.3.2, and WebStorm 2021.3.1.

Vulnerable Configurations

Part	Description	Count
Application	Jetbrains Jetbrains Clion 2021.3.1 Jetbrains Goland 2021.3.1 Jetbrains Intellij Idea 2021.3.1 Jetbrains Phpstorm 2021.3.1 Jetbrains Pycharm 2021.3.1 Jetbrains Rubymine 2021.3.1 Jetbrains Webstorm 2021.3.1	11

Summary

Vulnerable Configurations

References