jetbrains
582 tracked vulnerabilities.
CVE-2026-61492
LOW
Jetbrains YouTrack < 2026.2.17394 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Jul 10, 2026
CVSS 3.5
EPSS 0.00
CVE-2026-59796
HIGH
Jetbrains TeamCity < 2026.1.2 - Missing Authorization
Jul 10, 2026
CVSS 8.1
EPSS 0.00
CVE-2026-59795
HIGH
Jetbrains TeamCity < 2026.1.2 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Jul 10, 2026
CVSS 8.1
EPSS 0.00
CVE-2026-59794
HIGH
Jetbrains TeamCity < 2026.1.2 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Jul 10, 2026
CVSS 7.3
EPSS 0.00
CVE-2026-59793
HIGH
Jetbrains TeamCity < 2026.1.2 - External Control of File Name or Path
Jul 10, 2026
CVSS 8.8
EPSS 0.00
CVE-2026-59792
CRITICAL
JetBrains IntelliJ IDEA - Workspace ID Path Traversal Code Execution
Jul 10, 2026
CVSS 9.6
EPSS 0.00
CVE-2026-59791
LOW
Jetbrains YouTrack < 2026.2.17012 - Improper Restriction of Rendered UI Layers or Frames
Jul 10, 2026
CVSS 3.5
EPSS 0.00
CVE-2026-57926
LOW
Jetbrains YouTrack < 2026.2.16593 - Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')
Jun 26, 2026
CVSS 2.6
EPSS 0.00
CVE-2026-57925
MEDIUM
Jetbrains YouTrack < 2026.2.16593 - Missing Authorization
Jun 26, 2026
CVSS 4.3
EPSS 0.00
CVE-2026-57924
MEDIUM
Jetbrains YouTrack < 2026.2.16593 - Incorrect Default Permissions
Jun 26, 2026
CVSS 4.3
EPSS 0.00
CVE-2026-57923
MEDIUM
Jetbrains YouTrack < 2026.2.16593 - Missing Authorization
Jun 26, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-57922
LOW
Jetbrains YouTrack < 2026.2.16593 - Missing Authorization
Jun 26, 2026
CVSS 3.1
EPSS 0.00
CVE-2026-57921
MEDIUM
Jetbrains YouTrack < 2026.2.16593 - Missing Authorization
Jun 26, 2026
CVSS 4.3
EPSS 0.00
CVE-2026-53914
MEDIUM
Jetbrains Kotlin < 2.4.20 - Deserialization of Untrusted Data
Jun 26, 2026
CVSS 6.7
EPSS 0.00
CVE-2026-56142
CRITICAL
Jetbrains Hub - Improperly Controlled Modification of Dynamically-Determined Object Attributes
Jun 19, 2026
CVSS 9.9
EPSS 0.00
CVE-2026-56141
CRITICAL
Jetbrains Hub - Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)
Jun 19, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-53915
HIGH
Jetbrains GoLand < 2026.1.3 - External Control of File Name or Path
Jun 19, 2026
CVSS 7.1
EPSS 0.00
CVE-2026-50242
CRITICAL
Jetbrains Hub - Missing Authentication for Critical Function
Jun 19, 2026
CVSS 10.0
EPSS 0.00
CVE-2026-49386
MEDIUM
Jetbrains YouTrack < 2026.1.13570 - Authorization Bypass Through User-Controlled Key
May 29, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-49385
MEDIUM
Jetbrains YouTrack < 2026.1.13570 - Missing Authorization
May 29, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-49384
MEDIUM
Jetbrains PyCharm < 2025.3.4 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
May 29, 2026
CVSS 6.1
EPSS 0.00
CVE-2026-49383
LOW
Jetbrains IntelliJ Idea < 2026.1 - Improper Restriction of XML External Entity Reference
May 29, 2026
CVSS 3.3
EPSS 0.00
CVE-2026-49382
MEDIUM
Jetbrains IntelliJ Idea < 2026.1 - Improper Neutralization of Special Elements Used in a Template Engine
May 29, 2026
CVSS 4.5
EPSS 0.00
CVE-2026-49381
LOW
Jetbrains TeamCity < 2026.1 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
May 29, 2026
CVSS 3.4
EPSS 0.00
CVE-2026-49380
LOW
Jetbrains TeamCity < 2026.1 - URL Redirection to Untrusted Site ('Open Redirect')
May 29, 2026
CVSS 3.1
EPSS 0.00
Products
teamcity 273
youtrack 116
intellij_idea 63
hub 36
ktor 21
TeamCity 17
YouTrack 14
toolbox 11
pycharm 9
rider 8
kotlin 7
IntelliJ IDEA 6
youtrack_mobile 6
goland 5
upsource 5
webstorm 5
phpstorm 4
resharper 4
rubymine 4
Hub 3
code_with_me 3
junie 3
space 3
clion 2
dottrace 2
mps 2
Datalore 1
GoLand 1
Junie 1
Kotlin 1
Quick Filters