Vulnerabilities > Jetbrains
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-04-28 | CVE-2022-29813 | Code Injection vulnerability in Jetbrains Intellij Idea In JetBrains IntelliJ IDEA before 2022.1 local code execution via custom Pandoc path was possible | 4.6 |
| 2022-04-28 | CVE-2022-29814 | Code Injection vulnerability in Jetbrains Intellij Idea In JetBrains IntelliJ IDEA before 2022.1 local code execution via HTML descriptions in custom JSON schemas was possible | 4.4 |
| 2022-04-28 | CVE-2022-29815 | Code Injection vulnerability in Jetbrains Intellij Idea In JetBrains IntelliJ IDEA before 2022.1 local code execution via workspace settings was possible | 4.6 |
| 2022-04-28 | CVE-2022-29816 | Cross-site Scripting vulnerability in Jetbrains Intellij Idea In JetBrains IntelliJ IDEA before 2022.1 HTML injection into IDE messages was possible | 3.2 |
| 2022-04-28 | CVE-2022-29817 | Cross-site Scripting vulnerability in Jetbrains Intellij Idea In JetBrains IntelliJ IDEA before 2022.1 reflected XSS via error messages in internal web server was possible | 4.3 |
| 2022-04-28 | CVE-2022-29818 | Origin Validation Error vulnerability in Jetbrains Intellij Idea In JetBrains IntelliJ IDEA before 2022.1 origin checks in the internal web server were flawed | 3.6 |
| 2022-04-28 | CVE-2022-29819 | Code Injection vulnerability in Jetbrains Intellij Idea In JetBrains IntelliJ IDEA before 2022.1 local code execution via links in Quick Documentation was possible | 4.4 |
| 2022-04-28 | CVE-2022-29820 | Exposure of Resource to Wrong Sphere vulnerability in Jetbrains Pycharm In JetBrains PyCharm before 2022.1 exposure of the debugger port to the internal network was possible | 3.3 |
| 2022-04-28 | CVE-2022-29821 | Code Injection vulnerability in Jetbrains Pycharm In JetBrains Rider before 2022.1 local code execution via links in ReSharper Quick Documentation was possible | 4.4 |
| 2022-04-11 | CVE-2022-29035 | Use of Insufficiently Random Values vulnerability in Jetbrains Ktor In JetBrains Ktor Native before version 2.0.0 random values used for nonce generation weren't using SecureRandom implementations | 4.0 |