Vulnerabilities > Jetbrains

DATE	CVE	VULNERABILITY TITLE	RISK
2025-04-17	CVE-2025-43013	Cleartext Transmission of Sensitive Information vulnerability in Jetbrains Toolbox In JetBrains Toolbox App before 2.6 unencrypted credential transmission during SSH authentication was possible network low complexity jetbrains CWE-319	7.5
2025-03-27	CVE-2025-31139	Information Exposure Through Log Files vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2025.03 base64 encoded password could be exposed in build log network low complexity jetbrains CWE-532	6.5
2025-03-27	CVE-2025-31140	Cross-site Scripting vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2025.03 stored XSS was possible on Cloud Profiles page network low complexity jetbrains CWE-79	6.1
2025-03-27	CVE-2025-31141	Information Exposure Through an Error Message vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2025.03 exception could lead to credential leakage on Cloud Profiles page network low complexity jetbrains CWE-209	7.5
2025-02-11	CVE-2025-26492	Insufficiently Protected Credentials vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2024.12.2 improper Kubernetes connection settings could expose sensitive resources network low complexity jetbrains CWE-522 critical	9.1
2025-02-11	CVE-2025-26493	Cross-site Scripting vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2024.12.2 several DOM-based XSS were possible on the Code Inspection Report tab network low complexity jetbrains CWE-79	6.1
2025-01-21	CVE-2025-24456	Missing Authentication for Critical Function vulnerability in Jetbrains HUB In JetBrains Hub before 2024.3.55417 privilege escalation was possible via LDAP authentication mapping network low complexity jetbrains CWE-306	8.8
2025-01-21	CVE-2025-24457	Information Exposure Through Log Files vulnerability in Jetbrains Youtrack In JetBrains YouTrack before 2024.3.55417 permanent tokens could be exposed in logs local low complexity jetbrains CWE-532	5.5
2025-01-21	CVE-2025-24458	Authentication Bypass by Spoofing vulnerability in Jetbrains Youtrack In JetBrains YouTrack before 2024.3.55417 account takeover was possible via spoofed email and Helpdesk integration local low complexity jetbrains CWE-290	7.8
2025-01-21	CVE-2025-24459	Cross-site Scripting vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2024.12.1 reflected XSS was possible on the Vault Connection page network low complexity jetbrains CWE-79	6.1

Vulnerabilities > Jetbrains {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Jetbrains"}]}

Vulnerabilities > Jetbrains