Vulnerabilities > Jetbrains

DATE CVE VULNERABILITY TITLE RISK
2022-08-10 CVE-2022-38133 Information Exposure Through Log Files vulnerability in Jetbrains Teamcity
In JetBrains TeamCity before 2022.04.3 the private SSH key could be written to the server log in some cases
network
low complexity
jetbrains CWE-532
5.3
2022-08-03 CVE-2022-37396 Unspecified vulnerability in Jetbrains Rider
In JetBrains Rider before 2022.2 Trust and Open Project dialog could be bypassed, leading to local code execution
local
low complexity
jetbrains
7.8
2022-07-28 CVE-2022-37009 Code Injection vulnerability in Jetbrains Intellij Idea
In JetBrains IntelliJ IDEA before 2022.2 local code execution via a Vagrant executable was possible
local
low complexity
jetbrains CWE-94
7.8
2022-07-28 CVE-2022-37010 Improper Input Validation vulnerability in Jetbrains Intellij Idea
In JetBrains IntelliJ IDEA before 2022.2 email address validation in the "Git User Name Is Not Defined" dialog was missed
local
low complexity
jetbrains CWE-20
3.3
2022-07-20 CVE-2022-36321 Information Exposure Through Log Files vulnerability in Jetbrains Teamcity
In JetBrains TeamCity before 2022.04.2 the private SSH key could be written to the build log in some cases
network
low complexity
jetbrains CWE-532
6.5
2022-07-20 CVE-2022-36322 Argument Injection or Modification vulnerability in Jetbrains Teamcity
In JetBrains TeamCity before 2022.04.2 build parameter injection was possible
network
low complexity
jetbrains CWE-88
8.8
2022-07-01 CVE-2022-34894 Unspecified vulnerability in Jetbrains HUB
In JetBrains Hub before 2022.2.14799, insufficient access control allowed the hijacking of untrusted services
network
low complexity
jetbrains
5.3
2022-05-12 CVE-2022-29927 Cross-site Scripting vulnerability in Jetbrains Teamcity
In JetBrains TeamCity before 2022.04 reflected XSS on the Build Chain Status page was possible
network
low complexity
jetbrains CWE-79
6.1
2022-05-12 CVE-2022-29928 Information Exposure Through Log Files vulnerability in Jetbrains Teamcity
In JetBrains TeamCity before 2022.04 leak of secrets in TeamCity agent logs was possible
network
low complexity
jetbrains CWE-532
4.9
2022-05-12 CVE-2022-29929 Cross-site Scripting vulnerability in Jetbrains Teamcity
In JetBrains TeamCity before 2022.04 potential XSS via Referrer header was possible
network
low complexity
jetbrains CWE-79
6.1