Vulnerabilities > Jetbrains

DATE	CVE	VULNERABILITY TITLE	RISK
2022-02-25	CVE-2022-25264	Insecure Storage of Sensitive Information vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2021.2.3, environment variables of the "password" type could be logged in some cases. network low complexity jetbrains CWE-922	5.0
2022-02-25	CVE-2021-45977	Unspecified vulnerability in Jetbrains products JetBrains IntelliJ IDEA 2021.3.1 Preview, IntelliJ IDEA 2021.3.1 RC, PyCharm Professional 2021.3.1 RC, GoLand 2021.3.1, PhpStorm 2021.3.1 Preview, PhpStorm 2021.3.1 RC, RubyMine 2021.3.1 Preview, RubyMine 2021.3.1 RC, CLion 2021.3.1, WebStorm 2021.3.1 Preview, and WebStorm 2021.3.1 RC (used as Remote Development backend IDEs) bind to the 0.0.0.0 IP address. network low complexity jetbrains	7.5
2022-02-25	CVE-2022-24327	Incorrect Permission Assignment for Critical Resource vulnerability in Jetbrains HUB In JetBrains Hub before 2021.1.13890, integration with JetBrains Account exposed an API key with excessive permissions. network low complexity jetbrains CWE-732	5.0
2022-02-25	CVE-2022-24328	Unspecified vulnerability in Jetbrains HUB In JetBrains Hub before 2021.1.13956, an unprivileged user could perform DoS. network low complexity jetbrains	4.0
2022-02-25	CVE-2022-24329	Improper Locking vulnerability in multiple products In JetBrains Kotlin before 1.6.0, it was not possible to lock dependencies for Multiplatform Gradle Projects. network low complexity jetbrains oracle CWE-667	5.3
2022-02-25	CVE-2022-24330	Open Redirect vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2021.2.1, a redirection to an external site was possible. network jetbrains CWE-601	5.8
2022-02-25	CVE-2022-24331	Unspecified vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2021.1.4, GitLab authentication impersonation was possible. network low complexity jetbrains critical	9.8
2022-02-25	CVE-2022-24332	Insufficient Session Expiration vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2021.2, a logout action didn't remove a Remember Me cookie. network low complexity jetbrains CWE-613	5.0
2022-02-25	CVE-2022-24333	Server-Side Request Forgery (SSRF) vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2021.2, blind SSRF via an XML-RPC call was possible. network low complexity jetbrains CWE-918	4.0
2022-02-25	CVE-2022-24334	Unspecified vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2021.2.1, the Agent Push feature allowed selection of any private key on the server. network low complexity jetbrains	5.0

Vulnerabilities > Jetbrains {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Jetbrains"}]}

Vulnerabilities > Jetbrains