Vulnerabilities > Jetbrains

DATE	CVE	VULNERABILITY TITLE	RISK
2021-11-09	CVE-2021-43196	Unspecified vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2021.1, information disclosure via the Docker Registry connection dialog is possible. network low complexity jetbrains	5.0
2021-11-09	CVE-2021-43197	Cross-site Scripting vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2021.1.2, email notifications could include unescaped HTML for XSS. network jetbrains CWE-79	4.3
2021-11-09	CVE-2021-43198	Cross-site Scripting vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2021.1.2, stored XSS is possible. network jetbrains CWE-79	3.5
2021-11-09	CVE-2021-43199	Incorrect Default Permissions vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2021.1.2, permission checks in the Create Patch functionality are insufficient. network low complexity jetbrains CWE-276	5.0
2021-11-09	CVE-2021-43200	Unspecified vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2021.1.2, permission checks in the Agent Push functionality were insufficient. network low complexity jetbrains	7.5
2021-11-09	CVE-2021-43201	Unspecified vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2021.1.3, a newly created project could take settings from an already deleted project. network low complexity jetbrains	5.0
2021-11-09	CVE-2021-43203	Improper Authentication vulnerability in Jetbrains Ktor In JetBrains Ktor before 1.6.4, nonce verification during the OAuth2 authentication process is implemented improperly. network low complexity jetbrains CWE-287	5.0
2021-08-06	CVE-2021-36209	Weak Password Recovery Mechanism for Forgotten Password vulnerability in Jetbrains HUB In JetBrains Hub before 2021.1.13389, account takeover was possible during password reset. network low complexity jetbrains CWE-640	7.5
2021-08-06	CVE-2021-37540	Unspecified vulnerability in Jetbrains HUB In JetBrains Hub before 2021.1.13262, a potentially insufficient CSP for the Widget deployment feature was used. network low complexity jetbrains	6.5
2021-08-06	CVE-2021-37541	Weak Password Recovery Mechanism for Forgotten Password vulnerability in Jetbrains HUB In JetBrains Hub before 2021.1.13402, HTML injection in the password reset email was possible. network jetbrains CWE-640	4.3

Vulnerabilities > Jetbrains {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Jetbrains"}]}

Vulnerabilities > Jetbrains