High

DATE	CVE	VULNERABILITY TITLE	RISK
2024-06-10	CVE-2024-37051	Insufficiently Protected Credentials vulnerability in Jetbrains products GitHub access token could be exposed to third-party sites in JetBrains IDEs after version 2023.1 and less than: IntelliJ IDEA 2023.1.7, 2023.2.7, 2023.3.7, 2024.1.3, 2024.2 EAP3; Aqua 2024.1.2; CLion 2023.1.7, 2023.2.4, 2023.3.5, 2024.1.3, 2024.2 EAP2; DataGrip 2023.1.3, 2023.2.4, 2023.3.5, 2024.1.4; DataSpell 2023.1.6, 2023.2.7, 2023.3.6, 2024.1.2, 2024.2 EAP1; GoLand 2023.1.6, 2023.2.7, 2023.3.7, 2024.1.3, 2024.2 EAP3; MPS 2023.2.1, 2023.3.1, 2024.1 EAP2; PhpStorm 2023.1.6, 2023.2.6, 2023.3.7, 2024.1.3, 2024.2 EAP3; PyCharm 2023.1.6, 2023.2.7, 2023.3.6, 2024.1.3, 2024.2 EAP2; Rider 2023.1.7, 2023.2.5, 2023.3.6, 2024.1.3; RubyMine 2023.1.7, 2023.2.7, 2023.3.7, 2024.1.3, 2024.2 EAP4; RustRover 2024.1.1; WebStorm 2023.1.6, 2023.2.7, 2023.3.7, 2024.1.4 network low complexity jetbrains CWE-522	7.5
2022-04-28	CVE-2022-29821	Code Injection vulnerability in Jetbrains Pycharm In JetBrains Rider before 2022.1 local code execution via links in ReSharper Quick Documentation was possible local low complexity jetbrains CWE-94	7.7
2021-05-11	CVE-2021-30005	Insufficient Verification of Data Authenticity vulnerability in Jetbrains Pycharm In JetBrains PyCharm before 2020.3.4, local code execution was possible because of insufficient checks when getting the project from VCS. local low complexity jetbrains CWE-345	7.8
2020-04-10	CVE-2020-11694	Insufficiently Protected Credentials vulnerability in Jetbrains Pycharm 2019.2.5/2019.3 In JetBrains PyCharm 2019.2.5 and 2019.3 on Windows, Apple Notarization Service credentials were included. network low complexity jetbrains CWE-522	7.5
2019-10-02	CVE-2019-14958	Allocation of Resources Without Limits or Throttling vulnerability in Jetbrains Pycharm JetBrains PyCharm before 2019.2 was allocating a buffer of unknown size for one of the connection processes. network low complexity jetbrains CWE-770	7.5