jetbrains

583 tracked vulnerabilities.

CVE-2023-34219 MEDIUM
JetBrains TeamCity < 2023.05 - Improper Authorization via REST API
May 31, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-34218 CRITICAL
JetBrains TeamCity < 2023.05 - Incorrect Authorization Bypass
May 31, 2023
CVSS 9.1
EPSS 0.01
CVE-2022-48481 MEDIUM
JetBrains Toolbox App <1.28 - Code Injection
Apr 28, 2023
CVSS 5.2
EPSS 0.00
CVE-2022-48477 MEDIUM
JetBrains Hub < 2023.1.15725 - Server-Side Request Forgery in Auth Module Integration
Apr 24, 2023
CVSS 4.1
EPSS 0.00
CVE-2022-48476 HIGH
JetBrains Ktor < 2.3.0 - Path Traversal via resolveResource Method
Apr 24, 2023
CVSS 7.5
EPSS 0.01
CVE-2022-48435 LOW
JetBrains PhpStorm < 2023.1 - Sensitive Information Disclosure in Log File
Apr 04, 2023
CVSS 3.3
EPSS 0.00
CVE-2022-48433 MEDIUM
JetBrains IntelliJ IDEA < 2023.1 - NTLM Hash Exposure via Built-in Web Server API
Mar 29, 2023
CVSS 6.1
EPSS 0.01
CVE-2022-48432 MEDIUM
JetBrains IntelliJ IDEA <2023.1 - Info Disclosure
Mar 29, 2023
CVSS 5.2
EPSS 0.00
CVE-2022-48431 MEDIUM
JetBrains IntelliJ IDEA < 2023.1 - Insufficient Verification of Data Authenticity
Mar 29, 2023
CVSS 4.5
EPSS 0.00
CVE-2022-48430 MEDIUM
JetBrains IntelliJ IDEA < 2023.1 - Unauthorized File Content Disclosure via Markdown Preview External Stylesheet
Mar 29, 2023
CVSS 5.5
EPSS 0.00
CVE-2022-48428 MEDIUM
JetBrains TeamCity < 2022.10.3 - Stored Cross-Site Scripting on SSH Keys Page
Mar 27, 2023
CVSS 4.6
EPSS 0.68
CVE-2022-48427 MEDIUM
JetBrains TeamCity < 2022.10.3 - Stored Cross-Site Scripting on Pending Changes and Changes Tabs
Mar 27, 2023
CVSS 4.6
EPSS 0.01
CVE-2022-48429 MEDIUM
JetBrains Hub < 2022.1.15583 - Reflected Cross-Site Scripting in Dashboards
Mar 27, 2023
CVSS 4.6
EPSS 0.01
CVE-2022-48426 MEDIUM
JetBrains TeamCity - Stored Cross-Site Scripting in Perforce Connection Settings
Mar 27, 2023
CVSS 4.6
EPSS 0.01
CVE-2022-48344 MEDIUM
JetBrains TeamCity < 2022.10.2 - Cross-Site Scripting in Group Creation Process
Feb 23, 2023
CVSS 5.4
EPSS 0.00
CVE-2022-48343 MEDIUM
JetBrains TeamCity < 2022.10.2 - Stored Cross-Site Scripting in User Creation Process
Feb 23, 2023
CVSS 5.4
EPSS 0.59
CVE-2022-48342 MEDIUM
JetBrains TeamCity <2022.10.2 - Info Disclosure
Feb 23, 2023
CVSS 5.2
EPSS 0.00
CVE-2022-47896 MEDIUM
JetBrains IntelliJ IDEA <2022.3.1 - Code Injection
Dec 22, 2022
CVSS 5.0
EPSS 0.00
CVE-2022-47895 MEDIUM
JetBrains IntelliJ IDEA < 2022.3.1 - Cleartext Transmission of Sensitive Information via JSP File Validation
Dec 22, 2022
CVSS 4.7
EPSS 0.00
CVE-2022-46831 MEDIUM
JetBrains TeamCity <2022.10.1 - Privilege Escalation
Dec 08, 2022
CVSS 6.6
EPSS 0.00
CVE-2022-46830 MEDIUM
JetBrains TeamCity <2022.10.1 - SSRF
Dec 08, 2022
CVSS 4.1
EPSS 0.00
CVE-2022-46829 HIGH
JetBrains Gateway <2022.3 - Auth Bypass
Dec 08, 2022
CVSS 7.1
EPSS 0.00
CVE-2022-46828 MEDIUM
JetBrains IntelliJ IDEA <2022.3 - Code Injection
Dec 08, 2022
CVSS 5.2
EPSS 0.00
CVE-2022-46827 LOW
JetBrains IntelliJ IDEA <2022.3 - SSRF
Dec 08, 2022
CVSS 3.9
EPSS 0.00
CVE-2022-46826 MEDIUM
JetBrains IntelliJ IDEA <2022.3 - Path Traversal
Dec 08, 2022
CVSS 6.2
EPSS 0.00