Vulnerabilities > Jetbrains > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-05-11 | CVE-2021-31899 | Unspecified vulnerability in Jetbrains Code With ME In JetBrains Code With Me bundled to the compatible IDEs before version 2021.1, the client could execute code in read-only mode. | 8.8 |
2021-05-11 | CVE-2021-31901 | Unspecified vulnerability in Jetbrains HUB In JetBrains Hub before 2021.1.13079, two-factor authentication wasn't enabled properly for the All Users group. | 7.5 |
2021-05-11 | CVE-2021-31902 | Incorrect Permission Assignment for Critical Resource vulnerability in Jetbrains Youtrack In JetBrains YouTrack before 2020.6.6600, access control during the exporting of issues was implemented improperly. | 7.5 |
2021-05-11 | CVE-2021-31905 | Unspecified vulnerability in Jetbrains Youtrack In JetBrains YouTrack before 2020.6.8801, information disclosure in an issue preview was possible. | 7.5 |
2021-02-03 | CVE-2021-25776 | Insecure Storage of Sensitive Information vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2020.2, an ECR token could be exposed in a build's parameters. | 7.5 |
2021-02-03 | CVE-2021-25769 | Unspecified vulnerability in Jetbrains Youtrack In JetBrains YouTrack before 2020.4.6808, the YouTrack administrator wasn't able to access attachments. | 7.5 |
2021-02-03 | CVE-2021-25765 | Cross-Site Request Forgery (CSRF) vulnerability in Jetbrains Youtrack In JetBrains YouTrack before 2020.4.4701, CSRF via attachment upload was possible. | 8.8 |
2021-02-03 | CVE-2021-25758 | Deserialization of Untrusted Data vulnerability in Jetbrains Intellij Idea In JetBrains IntelliJ IDEA before 2020.3, potentially insecure deserialization of the workspace model could lead to local code execution. | 7.8 |
2021-02-03 | CVE-2020-35667 | Server-Side Request Forgery (SSRF) vulnerability in Jetbrains Teamcity JetBrains TeamCity Plugin before 2020.2.85695 SSRF. | 7.5 |
2020-11-16 | CVE-2020-27623 | Unspecified vulnerability in Jetbrains Ideavim JetBrains IdeaVim before version 0.58 might have caused an information leak in limited circumstances. | 7.5 |