Vulnerabilities > Jetbrains > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-25 | CVE-2023-39173 | Incorrect Privilege Assignment vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2023.05.2 a token with limited permissions could be used to gain full account access | 8.8 |
| 2023-07-25 | CVE-2023-39174 | Unspecified vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2023.05.2 a ReDoS attack was possible via integration with issue trackers | 7.5 |
| 2023-07-12 | CVE-2023-38068 | Improper Control of Interaction Frequency vulnerability in Jetbrains Youtrack In JetBrains YouTrack before 2023.1.16597 captcha was not properly validated for Helpdesk forms | 7.3 |
| 2023-06-12 | CVE-2023-35053 | Unspecified vulnerability in Jetbrains Youtrack In JetBrains YouTrack before 2023.1.10518 a DoS attack was possible via Helpdesk forms | 7.5 |
| 2023-05-31 | CVE-2023-34227 | Exposed Dangerous Method or Function vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2023.05 a specific endpoint was vulnerable to brute force attacks | 7.5 |
| 2023-04-28 | CVE-2022-48481 | Insufficient Control Flow Management vulnerability in Jetbrains Toolbox In JetBrains Toolbox App before 1.28 a DYLIB injection on macOS was possible | 7.8 |
| 2023-04-24 | CVE-2022-48476 | Path Traversal vulnerability in Jetbrains Ktor In JetBrains Ktor before 2.3.0 path traversal in the `resolveResource` method was possible | 7.5 |
| 2023-03-29 | CVE-2022-48430 | Unspecified vulnerability in Jetbrains Intellij Idea In JetBrains IntelliJ IDEA before 2023.1 file content could be disclosed via an external stylesheet path in Markdown preview. | 7.5 |
| 2023-03-29 | CVE-2022-48431 | Insufficient Verification of Data Authenticity vulnerability in Jetbrains Intellij Idea In JetBrains IntelliJ IDEA before 2023.1 in some cases, Gradle and Maven projects could be imported without the “Trust Project” confirmation. | 7.8 |
| 2023-03-29 | CVE-2022-48432 | Insecure Default Initialization of Resource vulnerability in Jetbrains Intellij Idea In JetBrains IntelliJ IDEA before 2023.1 the bundled version of Chromium wasn't sandboxed. | 8.8 |