Vulnerabilities > Jetbrains > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-02-25 CVE-2022-25262 Insufficient Verification of Data Authenticity vulnerability in Jetbrains HUB
In JetBrains Hub before 2022.1.14434, SAML request takeover was possible.
network
low complexity
jetbrains CWE-345
critical
 9.8
9.8
2022-02-25 CVE-2022-24331 Unspecified vulnerability in Jetbrains Teamcity
In JetBrains TeamCity before 2021.1.4, GitLab authentication impersonation was possible.
network
low complexity
jetbrains
critical
 9.8
9.8
2020-11-16 CVE-2020-25207 Unspecified vulnerability in Jetbrains Toolbox
JetBrains ToolBox before version 1.18 is vulnerable to Remote Code Execution via a browser protocol handler.
network
low complexity
jetbrains
critical
 10.0
10
2019-10-02 CVE-2019-15036 OS Command Injection vulnerability in Jetbrains Teamcity 2018.2.4
An issue was discovered in JetBrains TeamCity 2018.2.4.
network
low complexity
jetbrains CWE-78
critical
 9.0
9.0
2019-10-02 CVE-2019-12157 Improper Input Validation vulnerability in Jetbrains Teamcity and Upsource
In JetBrains UpSource versions before 2018.2 build 1293, there is credential disclosure via RPC commands.
network
low complexity
jetbrains CWE-20
critical
 10.0
10