Vulnerabilities > Jetbrains > High

DATE CVE VULNERABILITY TITLE RISK
2020-01-30 CVE-2020-7905 Unspecified vulnerability in Jetbrains Intellij Idea
Ports listened to by JetBrains IntelliJ IDEA before 2019.3 were exposed to the network.
network
low complexity
jetbrains
7.5
2020-01-30 CVE-2020-7904 Improper Certificate Validation vulnerability in Jetbrains Intellij Idea
In JetBrains IntelliJ IDEA before 2019.3, some Maven repositories were accessed via HTTP instead of HTTPS.
network
high complexity
jetbrains CWE-295
7.4
2020-01-27 CVE-2020-5207 HTTP Request Smuggling vulnerability in Jetbrains Ktor
In Ktor before 1.3.0, request smuggling is possible when running behind a proxy that doesn't handle Content-Length and Transfer-Encoding properly or doesn't handle \n as a headers separator.
network
low complexity
jetbrains CWE-444
7.5
2020-01-15 CVE-2019-18412 XXE vulnerability in Jetbrains Idetalk
JetBrains IDETalk plugin before version 193.4099.10 allows XXE
network
low complexity
jetbrains CWE-611
7.5
2019-10-31 CVE-2019-18368 Unspecified vulnerability in Jetbrains Toolbox
In JetBrains Toolbox App before 1.15.5666 for Windows, privilege escalation was possible.
network
low complexity
jetbrains
7.3
2019-10-02 CVE-2019-16407 Uncontrolled Search Path Element vulnerability in Jetbrains Resharper
JetBrains ReSharper installers for versions before 2019.2 had a DLL Hijacking vulnerability.
local
low complexity
jetbrains CWE-427
7.3
2019-10-02 CVE-2019-15040 Cross-Site Request Forgery (CSRF) vulnerability in Jetbrains Youtrack
JetBrains YouTrack versions before 2019.1 had a CSRF vulnerability on the settings page.
network
low complexity
jetbrains CWE-352
8.8
2019-10-02 CVE-2019-15036 OS Command Injection vulnerability in Jetbrains Teamcity 2018.2.4
An issue was discovered in JetBrains TeamCity 2018.2.4.
network
low complexity
jetbrains CWE-78
7.2
2019-10-02 CVE-2019-14958 Allocation of Resources Without Limits or Throttling vulnerability in Jetbrains Pycharm
JetBrains PyCharm before 2019.2 was allocating a buffer of unknown size for one of the connection processes.
network
low complexity
jetbrains CWE-770
7.5
2019-10-01 CVE-2019-15042 Improper Certificate Validation vulnerability in Jetbrains Teamcity 2018.2.4
An issue was discovered in JetBrains TeamCity 2018.2.4.
network
low complexity
jetbrains CWE-295
7.5