Vulnerabilities > Jetbrains > High

DATE CVE VULNERABILITY TITLE RISK
2021-05-11 CVE-2021-30482 Improper Preservation of Permissions vulnerability in Jetbrains Upsource
In JetBrains UpSource before 2020.1.1883, application passwords were not revoked correctly
network
low complexity
jetbrains CWE-281
7.5
2021-05-11 CVE-2021-31898 Cleartext Transmission of Sensitive Information vulnerability in Jetbrains Webstorm
In JetBrains WebStorm before 2021.1, HTTP requests were used instead of HTTPS.
network
low complexity
jetbrains CWE-319
7.5
2021-05-11 CVE-2021-31910 Server-Side Request Forgery (SSRF) vulnerability in Jetbrains Teamcity
In JetBrains TeamCity before 2020.2.3, information disclosure via SSRF was possible.
network
low complexity
jetbrains CWE-918
7.5
2021-05-11 CVE-2021-31912 Weak Password Recovery Mechanism for Forgotten Password vulnerability in Jetbrains Teamcity
In JetBrains TeamCity before 2020.2.3, account takeover was potentially possible during a password reset.
network
low complexity
jetbrains CWE-640
8.8
2021-05-11 CVE-2021-31913 Improper Validation of Integrity Check Value vulnerability in Jetbrains Teamcity
In JetBrains TeamCity before 2020.2.3, insufficient checks of the redirect_uri were made during GitHub SSO token exchange.
network
low complexity
jetbrains CWE-354
7.5
2021-05-11 CVE-2021-26310 Unspecified vulnerability in Jetbrains Teamcity
In the TeamCity IntelliJ plugin before 2020.2.2.85899, DoS was possible.
network
low complexity
jetbrains
7.5
2021-05-11 CVE-2021-29263 Unspecified vulnerability in Jetbrains Intellij Idea
In JetBrains IntelliJ IDEA 2020.3.3, local code execution was possible because of insufficient checks when getting the project from VCS.
local
low complexity
jetbrains
7.8
2021-05-11 CVE-2021-30005 Insufficient Verification of Data Authenticity vulnerability in Jetbrains Pycharm
In JetBrains PyCharm before 2020.3.4, local code execution was possible because of insufficient checks when getting the project from VCS.
local
low complexity
jetbrains CWE-345
7.8
2021-05-11 CVE-2021-30006 XXE vulnerability in Jetbrains Intellij Idea
In IntelliJ IDEA before 2020.3.3, XXE was possible, leading to information disclosure.
network
low complexity
jetbrains CWE-611
7.5
2021-05-11 CVE-2021-30504 Resource Exhaustion vulnerability in Jetbrains Intellij Idea
In JetBrains IntelliJ IDEA before 2021.1, DoS was possible because of unbounded resource allocation.
network
low complexity
jetbrains CWE-400
7.5