jetbrains

582 tracked vulnerabilities.

CVE-2026-61492 LOW
Jetbrains YouTrack < 2026.2.17394 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Jul 10, 2026
CVSS 3.5
EPSS 0.00
CVE-2026-59796 HIGH
Jetbrains TeamCity < 2026.1.2 - Missing Authorization
Jul 10, 2026
CVSS 8.1
EPSS 0.00
CVE-2026-59795 HIGH
Jetbrains TeamCity < 2026.1.2 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Jul 10, 2026
CVSS 8.1
EPSS 0.00
CVE-2026-59794 HIGH
Jetbrains TeamCity < 2026.1.2 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Jul 10, 2026
CVSS 7.3
EPSS 0.00
CVE-2026-59793 HIGH
Jetbrains TeamCity < 2026.1.2 - External Control of File Name or Path
Jul 10, 2026
CVSS 8.8
EPSS 0.00
CVE-2026-59792 CRITICAL
JetBrains IntelliJ IDEA - Workspace ID Path Traversal Code Execution
Jul 10, 2026
CVSS 9.6
EPSS 0.00
CVE-2026-59791 LOW
Jetbrains YouTrack < 2026.2.17012 - Improper Restriction of Rendered UI Layers or Frames
Jul 10, 2026
CVSS 3.5
EPSS 0.00
CVE-2026-57926 LOW
Jetbrains YouTrack < 2026.2.16593 - Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')
Jun 26, 2026
CVSS 2.6
EPSS 0.00
CVE-2026-57925 MEDIUM
Jetbrains YouTrack < 2026.2.16593 - Missing Authorization
Jun 26, 2026
CVSS 4.3
EPSS 0.00
CVE-2026-57924 MEDIUM
Jetbrains YouTrack < 2026.2.16593 - Incorrect Default Permissions
Jun 26, 2026
CVSS 4.3
EPSS 0.00
CVE-2026-57923 MEDIUM
Jetbrains YouTrack < 2026.2.16593 - Missing Authorization
Jun 26, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-57922 LOW
Jetbrains YouTrack < 2026.2.16593 - Missing Authorization
Jun 26, 2026
CVSS 3.1
EPSS 0.00
CVE-2026-57921 MEDIUM
Jetbrains YouTrack < 2026.2.16593 - Missing Authorization
Jun 26, 2026
CVSS 4.3
EPSS 0.00
CVE-2026-53914 MEDIUM
Jetbrains Kotlin < 2.4.20 - Deserialization of Untrusted Data
Jun 26, 2026
CVSS 6.7
EPSS 0.00
CVE-2026-56142 CRITICAL
Jetbrains Hub - Improperly Controlled Modification of Dynamically-Determined Object Attributes
Jun 19, 2026
CVSS 9.9
EPSS 0.00
CVE-2026-56141 CRITICAL
Jetbrains Hub - Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)
Jun 19, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-53915 HIGH
Jetbrains GoLand < 2026.1.3 - External Control of File Name or Path
Jun 19, 2026
CVSS 7.1
EPSS 0.00
CVE-2026-50242 CRITICAL
Jetbrains Hub - Missing Authentication for Critical Function
Jun 19, 2026
CVSS 10.0
EPSS 0.00
CVE-2026-49386 MEDIUM
Jetbrains YouTrack < 2026.1.13570 - Authorization Bypass Through User-Controlled Key
May 29, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-49385 MEDIUM
Jetbrains YouTrack < 2026.1.13570 - Missing Authorization
May 29, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-49384 MEDIUM
Jetbrains PyCharm < 2025.3.4 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
May 29, 2026
CVSS 6.1
EPSS 0.00
CVE-2026-49383 LOW
Jetbrains IntelliJ Idea < 2026.1 - Improper Restriction of XML External Entity Reference
May 29, 2026
CVSS 3.3
EPSS 0.00
CVE-2026-49382 MEDIUM
Jetbrains IntelliJ Idea < 2026.1 - Improper Neutralization of Special Elements Used in a Template Engine
May 29, 2026
CVSS 4.5
EPSS 0.00
CVE-2026-49381 LOW
Jetbrains TeamCity < 2026.1 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
May 29, 2026
CVSS 3.4
EPSS 0.00
CVE-2026-49380 LOW
Jetbrains TeamCity < 2026.1 - URL Redirection to Untrusted Site ('Open Redirect')
May 29, 2026
CVSS 3.1
EPSS 0.00