Vulnerabilities > Jetbrains > High

DATE CVE VULNERABILITY TITLE RISK
2021-05-11 CVE-2021-31899 Unspecified vulnerability in Jetbrains Code With ME
In JetBrains Code With Me bundled to the compatible IDEs before version 2021.1, the client could execute code in read-only mode.
network
low complexity
jetbrains
8.8
2021-05-11 CVE-2021-31901 Unspecified vulnerability in Jetbrains HUB
In JetBrains Hub before 2021.1.13079, two-factor authentication wasn't enabled properly for the All Users group.
network
low complexity
jetbrains
7.5
2021-05-11 CVE-2021-31902 Incorrect Permission Assignment for Critical Resource vulnerability in Jetbrains Youtrack
In JetBrains YouTrack before 2020.6.6600, access control during the exporting of issues was implemented improperly.
network
low complexity
jetbrains CWE-732
7.5
2021-05-11 CVE-2021-31905 Unspecified vulnerability in Jetbrains Youtrack
In JetBrains YouTrack before 2020.6.8801, information disclosure in an issue preview was possible.
network
low complexity
jetbrains
7.5
2021-02-03 CVE-2021-25776 Insecure Storage of Sensitive Information vulnerability in Jetbrains Teamcity
In JetBrains TeamCity before 2020.2, an ECR token could be exposed in a build's parameters.
network
low complexity
jetbrains CWE-922
7.5
2021-02-03 CVE-2021-25769 Unspecified vulnerability in Jetbrains Youtrack
In JetBrains YouTrack before 2020.4.6808, the YouTrack administrator wasn't able to access attachments.
network
low complexity
jetbrains
7.5
2021-02-03 CVE-2021-25765 Cross-Site Request Forgery (CSRF) vulnerability in Jetbrains Youtrack
In JetBrains YouTrack before 2020.4.4701, CSRF via attachment upload was possible.
network
low complexity
jetbrains CWE-352
8.8
2021-02-03 CVE-2021-25758 Deserialization of Untrusted Data vulnerability in Jetbrains Intellij Idea
In JetBrains IntelliJ IDEA before 2020.3, potentially insecure deserialization of the workspace model could lead to local code execution.
local
low complexity
jetbrains CWE-502
7.8
2021-02-03 CVE-2020-35667 Server-Side Request Forgery (SSRF) vulnerability in Jetbrains Teamcity
JetBrains TeamCity Plugin before 2020.2.85695 SSRF.
network
low complexity
jetbrains CWE-918
7.5
2020-11-16 CVE-2020-27623 Unspecified vulnerability in Jetbrains Ideavim
JetBrains IdeaVim before version 0.58 might have caused an information leak in limited circumstances.
network
low complexity
jetbrains
7.5