Vulnerabilities > Jetbrains > High

DATE CVE VULNERABILITY TITLE RISK
2021-02-03 CVE-2021-25769 Unspecified vulnerability in Jetbrains Youtrack
In JetBrains YouTrack before 2020.4.6808, the YouTrack administrator wasn't able to access attachments.
network
low complexity
jetbrains
7.5
7.5
2021-02-03 CVE-2021-25765 Cross-Site Request Forgery (CSRF) vulnerability in Jetbrains Youtrack
In JetBrains YouTrack before 2020.4.4701, CSRF via attachment upload was possible.
network
low complexity
jetbrains CWE-352
8.8
8.8
2021-02-03 CVE-2021-25758 Deserialization of Untrusted Data vulnerability in Jetbrains Intellij Idea
In JetBrains IntelliJ IDEA before 2020.3, potentially insecure deserialization of the workspace model could lead to local code execution.
local
low complexity
jetbrains CWE-502
7.8
7.8
2021-02-03 CVE-2020-35667 Server-Side Request Forgery (SSRF) vulnerability in Jetbrains Teamcity
JetBrains TeamCity Plugin before 2020.2.85695 SSRF.
network
low complexity
jetbrains CWE-918
7.5
7.5
2020-11-16 CVE-2020-27623 Unspecified vulnerability in Jetbrains Ideavim
JetBrains IdeaVim before version 0.58 might have caused an information leak in limited circumstances.
network
low complexity
jetbrains
7.5
7.5
2020-11-16 CVE-2020-25209 Unspecified vulnerability in Jetbrains Youtrack
In JetBrains YouTrack before 2020.3.6638, improper access control for some subresources leads to information disclosure via the REST API.
network
low complexity
jetbrains
7.5
7.5
2020-11-16 CVE-2020-25013 Unspecified vulnerability in Jetbrains Toolbox
JetBrains ToolBox before version 1.18 is vulnerable to a Denial of Service attack via a browser protocol handler.
network
low complexity
jetbrains
7.5
7.5
2020-10-19 CVE-2020-15822 Server-Side Request Forgery (SSRF) vulnerability in Jetbrains Youtrack
In JetBrains YouTrack before 2020.2.10514, SSRF is possible because URL filtering can be escaped.
network
low complexity
jetbrains CWE-918
7.3
7.3
2020-08-08 CVE-2020-15827 Improper Verification of Cryptographic Signature vulnerability in Jetbrains Toolbox 1.17/1.17.6802
In JetBrains ToolBox version 1.17 before 1.17.6856, the set of signature verifications omitted the jetbrains-toolbox.exe file.
network
low complexity
jetbrains CWE-347
7.5
7.5
2020-08-08 CVE-2020-15825 Unspecified vulnerability in Jetbrains Teamcity
In JetBrains TeamCity before 2020.1, users with the Modify Group permission can elevate other users' privileges.
network
low complexity
jetbrains
8.8
8.8