Vulnerabilities > Jetbrains > Low

DATE CVE VULNERABILITY TITLE RISK
2023-07-12 CVE-2023-38069 Improper Check for Unusual or Exceptional Conditions vulnerability in Jetbrains Intellij Idea
In JetBrains IntelliJ IDEA before 2023.1.4 license dialog could be suppressed in certain cases
local
low complexity
jetbrains CWE-754
3.3
2023-06-01 CVE-2023-34339 Information Exposure Through an Error Message vulnerability in Jetbrains Ktor
In JetBrains Ktor before 2.3.1 headers containing authentication data could be added to the exception's message
local
low complexity
jetbrains CWE-209
3.3
2023-04-04 CVE-2022-48435 Information Exposure Through Log Files vulnerability in Jetbrains PHPstorm 2021.3.1
In JetBrains PhpStorm before 2023.1 source code could be logged in the local idea.log file
local
low complexity
jetbrains CWE-532
3.3
2022-12-08 CVE-2022-46825 Inadequate Encryption Strength vulnerability in Jetbrains Intellij Idea
In JetBrains IntelliJ IDEA before 2022.3 the built-in web server leaked information about open projects.
local
low complexity
jetbrains CWE-326
3.3
2022-07-28 CVE-2022-37010 Improper Input Validation vulnerability in Jetbrains Intellij Idea
In JetBrains IntelliJ IDEA before 2022.2 email address validation in the "Git User Name Is Not Defined" dialog was missed
local
low complexity
jetbrains CWE-20
3.3
2022-04-28 CVE-2022-29820 Exposure of Resource to Wrong Sphere vulnerability in Jetbrains Pycharm
In JetBrains PyCharm before 2022.1 exposure of the debugger port to the internal network was possible
low complexity
jetbrains CWE-668
3.5
2022-04-28 CVE-2022-29816 Cross-site Scripting vulnerability in Jetbrains Intellij Idea
In JetBrains IntelliJ IDEA before 2022.1 HTML injection into IDE messages was possible
local
low complexity
jetbrains CWE-79
3.2
2022-04-28 CVE-2022-29812 Unspecified vulnerability in Jetbrains Intellij Idea
In JetBrains IntelliJ IDEA before 2022.1 notification mechanisms about using Unicode directionality formatting characters were insufficient
local
low complexity
jetbrains
2.3
2022-04-11 CVE-2022-29035 Use of Insufficiently Random Values vulnerability in Jetbrains Ktor
In JetBrains Ktor Native before version 2.0.0 random values used for nonce generation weren't using SecureRandom implementations
network
low complexity
jetbrains CWE-330
2.7
2021-05-11 CVE-2021-31906 Unspecified vulnerability in Jetbrains Teamcity
In JetBrains TeamCity before 2020.2.2, audit logs were not sufficient when an administrator uploaded a file.
network
low complexity
jetbrains
2.7