Vulnerabilities > Jetbrains > Intellij Idea > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-19 | CVE-2022-40978 | Uncontrolled Search Path Element vulnerability in Jetbrains Intellij Idea The installer of JetBrains IntelliJ IDEA before 2022.2.2 was vulnerable to EXE search order hijacking | 7.8 |
| 2022-07-28 | CVE-2022-37009 | Code Injection vulnerability in Jetbrains Intellij Idea In JetBrains IntelliJ IDEA before 2022.2 local code execution via a Vagrant executable was possible | 7.8 |
| 2022-04-28 | CVE-2022-29814 | Code Injection vulnerability in Jetbrains Intellij Idea In JetBrains IntelliJ IDEA before 2022.1 local code execution via HTML descriptions in custom JSON schemas was possible | 7.7 |
| 2022-04-28 | CVE-2022-29818 | Origin Validation Error vulnerability in Jetbrains Intellij Idea In JetBrains IntelliJ IDEA before 2022.1 origin checks in the internal web server were flawed | 7.1 |
| 2022-04-28 | CVE-2022-29819 | Code Injection vulnerability in Jetbrains Intellij Idea In JetBrains IntelliJ IDEA before 2022.1 local code execution via links in Quick Documentation was possible | 7.7 |
| 2022-02-25 | CVE-2022-24345 | Unspecified vulnerability in Jetbrains Intellij Idea In JetBrains IntelliJ IDEA before 2021.2.4, local code execution (without permission from a user) upon opening a project was possible. | 7.8 |
| 2022-02-25 | CVE-2022-24346 | Unspecified vulnerability in Jetbrains Intellij Idea In JetBrains IntelliJ IDEA before 2021.3.1, local code execution via RLO (Right-to-Left Override) characters was possible. | 7.8 |
| 2021-05-11 | CVE-2021-29263 | Unspecified vulnerability in Jetbrains Intellij Idea In JetBrains IntelliJ IDEA 2020.3.3, local code execution was possible because of insufficient checks when getting the project from VCS. | 7.8 |
| 2021-05-11 | CVE-2021-30006 | XXE vulnerability in Jetbrains Intellij Idea In IntelliJ IDEA before 2020.3.3, XXE was possible, leading to information disclosure. | 7.5 |
| 2021-05-11 | CVE-2021-30504 | Resource Exhaustion vulnerability in Jetbrains Intellij Idea In JetBrains IntelliJ IDEA before 2021.1, DoS was possible because of unbounded resource allocation. | 7.5 |