Vulnerabilities > Jetbrains

DATE	CVE	VULNERABILITY TITLE	RISK
2021-11-09	CVE-2021-43196	Unspecified vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2021.1, information disclosure via the Docker Registry connection dialog is possible. network low complexity jetbrains	7.5
2021-11-09	CVE-2021-43197	Cross-site Scripting vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2021.1.2, email notifications could include unescaped HTML for XSS. network low complexity jetbrains CWE-79	6.1
2021-11-09	CVE-2021-43198	Cross-site Scripting vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2021.1.2, stored XSS is possible. network low complexity jetbrains CWE-79	5.4
2021-11-09	CVE-2021-43199	Incorrect Default Permissions vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2021.1.2, permission checks in the Create Patch functionality are insufficient. network low complexity jetbrains CWE-276	5.3
2021-11-09	CVE-2021-43200	Unspecified vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2021.1.2, permission checks in the Agent Push functionality were insufficient. network low complexity jetbrains critical	9.8
2021-11-09	CVE-2021-43201	Unspecified vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2021.1.3, a newly created project could take settings from an already deleted project. network low complexity jetbrains	5.3
2021-11-09	CVE-2021-43203	Improper Authentication vulnerability in Jetbrains Ktor In JetBrains Ktor before 1.6.4, nonce verification during the OAuth2 authentication process is implemented improperly. network low complexity jetbrains CWE-287	7.5
2021-08-06	CVE-2021-36209	Weak Password Recovery Mechanism for Forgotten Password vulnerability in Jetbrains HUB In JetBrains Hub before 2021.1.13389, account takeover was possible during password reset. network low complexity jetbrains CWE-640 critical	9.8
2021-08-06	CVE-2021-37540	Unspecified vulnerability in Jetbrains HUB In JetBrains Hub before 2021.1.13262, a potentially insufficient CSP for the Widget deployment feature was used. network low complexity jetbrains	6.5
2021-08-06	CVE-2021-37541	Weak Password Recovery Mechanism for Forgotten Password vulnerability in Jetbrains HUB In JetBrains Hub before 2021.1.13402, HTML injection in the password reset email was possible. network low complexity jetbrains CWE-640	6.1

Vulnerabilities > Jetbrains {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Jetbrains"}]}

Vulnerabilities > Jetbrains