Vulnerabilities > Jetbrains

DATE	CVE	VULNERABILITY TITLE	RISK
2025-01-21	CVE-2025-24456	Missing Authentication for Critical Function vulnerability in Jetbrains HUB In JetBrains Hub before 2024.3.55417 privilege escalation was possible via LDAP authentication mapping network low complexity jetbrains CWE-306	8.8
2025-01-21	CVE-2025-24457	Information Exposure Through Log Files vulnerability in Jetbrains Youtrack In JetBrains YouTrack before 2024.3.55417 permanent tokens could be exposed in logs local low complexity jetbrains CWE-532	5.5
2025-01-21	CVE-2025-24458	Authentication Bypass by Spoofing vulnerability in Jetbrains Youtrack In JetBrains YouTrack before 2024.3.55417 account takeover was possible via spoofed email and Helpdesk integration local low complexity jetbrains CWE-290	7.8
2025-01-21	CVE-2025-24459	Cross-site Scripting vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2024.12.1 reflected XSS was possible on the Vault Connection page network low complexity jetbrains CWE-79	6.1
2025-01-21	CVE-2025-24460	Incorrect Authorization vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2024.12.1 improper access control allowed to see Projects’ names in the agent pool network low complexity jetbrains CWE-863	4.3
2025-01-21	CVE-2025-24461	Missing Authorization vulnerability in Jetbrains Teamcity 2024.12.1 In JetBrains TeamCity before 2024.12.1 decryption of connection secrets without proper permissions was possible via Test Connection endpoint network low complexity jetbrains CWE-862	6.5
2024-12-20	CVE-2024-56348	Incorrect Authorization vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2024.12 improper access control allowed viewing details of unauthorized agents network low complexity jetbrains CWE-863	4.3
2024-12-20	CVE-2024-56349	Missing Authorization vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2024.12 improper access control allowed unauthorized users to modify build logs network low complexity jetbrains CWE-862	5.3
2024-12-20	CVE-2024-56350	Incorrect Authorization vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2024.12 build credentials allowed unauthorized viewing of projects network low complexity jetbrains CWE-863	4.3
2024-12-20	CVE-2024-56351	Insufficient Session Expiration vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2024.12 access tokens were not revoked after removing user roles network low complexity jetbrains CWE-613	8.8

Vulnerabilities > Jetbrains {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Jetbrains"}]}

Vulnerabilities > Jetbrains