Vulnerabilities > Jetbrains > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-10-02 | CVE-2019-16407 | Uncontrolled Search Path Element vulnerability in Jetbrains Resharper JetBrains ReSharper installers for versions before 2019.2 had a DLL Hijacking vulnerability. | 7.3 |
| 2019-10-02 | CVE-2019-15040 | Cross-Site Request Forgery (CSRF) vulnerability in Jetbrains Youtrack JetBrains YouTrack versions before 2019.1 had a CSRF vulnerability on the settings page. | 8.8 |
| 2019-10-02 | CVE-2019-15036 | OS Command Injection vulnerability in Jetbrains Teamcity 2018.2.4 An issue was discovered in JetBrains TeamCity 2018.2.4. | 7.2 |
| 2019-10-02 | CVE-2019-14958 | Allocation of Resources Without Limits or Throttling vulnerability in Jetbrains Pycharm JetBrains PyCharm before 2019.2 was allocating a buffer of unknown size for one of the connection processes. | 7.5 |
| 2019-10-01 | CVE-2019-15042 | Improper Certificate Validation vulnerability in Jetbrains Teamcity 2018.2.4 An issue was discovered in JetBrains TeamCity 2018.2.4. | 7.5 |
| 2019-10-01 | CVE-2019-15038 | Unspecified vulnerability in Jetbrains Teamcity 2018.2.4 An issue was discovered in JetBrains TeamCity 2018.2.4. | 7.5 |
| 2019-10-01 | CVE-2019-14960 | Untrusted Search Path vulnerability in Jetbrains Rider JetBrains Rider before 2019.1.2 was using an unsigned JetBrains.Rider.Unity.Editor.Plugin.Repacked.dll file. | 7.8 |
| 2019-07-03 | CVE-2019-12841 | Improper Input Validation vulnerability in Jetbrains Teamcity Incorrect handling of user input in ZIP extraction was detected in JetBrains TeamCity. | 7.5 |
| 2019-07-03 | CVE-2019-10103 | Missing Encryption of Sensitive Data vulnerability in Jetbrains Kotlin JetBrains IntelliJ IDEA projects created using the Kotlin (JS Client/JVM Server) IDE Template were resolving Gradle artifacts using an http connection, potentially allowing an MITM attack. | 8.1 |
| 2019-07-03 | CVE-2019-10102 | Cleartext Transmission of Sensitive Information vulnerability in Jetbrains Kotlin and Ktor JetBrains Ktor framework (created using the Kotlin IDE template) versions before 1.1.0 were resolving artifacts using an http connection during the build process, potentially allowing an MITM attack. | 8.1 |