Vulnerabilities > Jetbrains > High

DATE CVE VULNERABILITY TITLE RISK
2020-01-30 CVE-2020-7906 Improper Verification of Cryptographic Signature vulnerability in Jetbrains Rider 2019.3.0
In JetBrains Rider versions 2019.3 EAP2 through 2019.3 EAP7, there were unsigned binaries provided by the Windows installer.
network
low complexity
jetbrains CWE-347
7.5
2020-01-30 CVE-2020-7905 Unspecified vulnerability in Jetbrains Intellij Idea
Ports listened to by JetBrains IntelliJ IDEA before 2019.3 were exposed to the network.
network
low complexity
jetbrains
7.5
2020-01-30 CVE-2020-7904 Improper Certificate Validation vulnerability in Jetbrains Intellij Idea
In JetBrains IntelliJ IDEA before 2019.3, some Maven repositories were accessed via HTTP instead of HTTPS.
network
high complexity
jetbrains CWE-295
7.4
2020-01-27 CVE-2020-5207 HTTP Request Smuggling vulnerability in Jetbrains Ktor
In Ktor before 1.3.0, request smuggling is possible when running behind a proxy that doesn't handle Content-Length and Transfer-Encoding properly or doesn't handle \n as a headers separator.
network
low complexity
jetbrains CWE-444
7.5
2020-01-15 CVE-2019-18412 XXE vulnerability in Jetbrains Idetalk
JetBrains IDETalk plugin before version 193.4099.10 allows XXE
network
low complexity
jetbrains CWE-611
7.5
2019-10-31 CVE-2019-18368 Unspecified vulnerability in Jetbrains Toolbox
In JetBrains Toolbox App before 1.15.5666 for Windows, privilege escalation was possible.
network
low complexity
jetbrains
7.3
2019-10-02 CVE-2019-16407 Uncontrolled Search Path Element vulnerability in Jetbrains Resharper
JetBrains ReSharper installers for versions before 2019.2 had a DLL Hijacking vulnerability.
local
low complexity
jetbrains CWE-427
7.3
2019-10-02 CVE-2019-15040 Cross-Site Request Forgery (CSRF) vulnerability in Jetbrains Youtrack
JetBrains YouTrack versions before 2019.1 had a CSRF vulnerability on the settings page.
network
low complexity
jetbrains CWE-352
8.8
2019-10-02 CVE-2019-15036 OS Command Injection vulnerability in Jetbrains Teamcity 2018.2.4
An issue was discovered in JetBrains TeamCity 2018.2.4.
network
low complexity
jetbrains CWE-78
7.2
2019-10-02 CVE-2019-14958 Allocation of Resources Without Limits or Throttling vulnerability in Jetbrains Pycharm
JetBrains PyCharm before 2019.2 was allocating a buffer of unknown size for one of the connection processes.
network
low complexity
jetbrains CWE-770
7.5