Vulnerabilities > Jetbrains

DATE	CVE	VULNERABILITY TITLE	RISK
2023-06-01	CVE-2023-34339	Information Exposure Through an Error Message vulnerability in Jetbrains Ktor In JetBrains Ktor before 2.3.1 headers containing authentication data could be added to the exception's message local low complexity jetbrains CWE-209	3.3
2023-05-31	CVE-2023-34218	Incorrect Authorization vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2023.05 bypass of permission checks allowing to perform admin actions was possible network low complexity jetbrains CWE-863 critical	9.8
2023-05-31	CVE-2023-34219	Incorrect Authorization vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2023.05 improper permission checks allowed users without appropriate permissions to edit Build Configuration settings via REST API network low complexity jetbrains CWE-863	4.3
2023-05-31	CVE-2023-34220	Cross-site Scripting vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2023.05 stored XSS in the Commit Status Publisher window was possible network low complexity jetbrains CWE-79	5.4
2023-05-31	CVE-2023-34221	Cross-site Scripting vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2023.05 stored XSS in the Show Connection page was possible network low complexity jetbrains CWE-79	5.4
2023-05-31	CVE-2023-34222	Cross-site Scripting vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2023.05 possible XSS in the Plugin Vendor URL was possible network low complexity jetbrains CWE-79	6.1
2023-05-31	CVE-2023-34223	Information Exposure Through Log Files vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2023.05 parameters of the "password" type from build dependencies could be logged in some cases network low complexity jetbrains CWE-532	5.3
2023-05-31	CVE-2023-34224	Open Redirect vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2023.05 open redirect during oAuth configuration was possible network low complexity jetbrains CWE-601	4.8
2023-05-31	CVE-2023-34225	Cross-site Scripting vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2023.05 stored XSS in the NuGet feed page was possible network low complexity jetbrains CWE-79	5.4
2023-05-31	CVE-2023-34226	Cross-site Scripting vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2023.05 reflected XSS in the Subscriptions page was possible network low complexity jetbrains CWE-79	6.1

Vulnerabilities > Jetbrains {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Jetbrains"}]}

Vulnerabilities > Jetbrains