jetbrains

582 tracked vulnerabilities.

CVE-2025-59455 MEDIUM
JetBrains TeamCity < 2025.07.2 - Project Isolation Bypass via Race Condition
Sep 17, 2025
CVSS 4.2
EPSS 0.00
CVE-2025-58335 MEDIUM
JetBrains Junie <252.284.66 - Info Disclosure
Aug 28, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-58334 HIGH
JetBrains IDE Services <2025.5.0.1086 - Privilege Escalation
Aug 28, 2025
CVSS 8.1
EPSS 0.00
CVE-2025-57734 MEDIUM
JetBrains TeamCity <2025.07.1 - Info Disclosure
Aug 20, 2025
CVSS 4.3
EPSS 0.01
CVE-2025-57733 MEDIUM
JetBrains TeamCity < 2025.07.1 - SMTP Injection via Email Content Modification
Aug 20, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-57732 HIGH
JetBrains TeamCity < 2025.07.1 - Privilege Escalation via Incorrect Directory Ownership
Aug 20, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-57731 HIGH
JetBrains YouTrack < 2025.2.92387 - Stored Cross-Site Scripting via Mermaid Diagram Content
Aug 20, 2025
CVSS 8.7
EPSS 0.00
CVE-2025-57730 MEDIUM
JetBrains IntelliJ IDEA < 2025.2.0 - HTML Injection via Remote Development Feature
Aug 20, 2025
CVSS 5.2
EPSS 0.00
CVE-2025-57729 MEDIUM
JetBrains IntelliJ IDEA <2025.2 - DoS
Aug 20, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-57728 MEDIUM
JetBrains IntelliJ IDEA < 2025.2 - Unauthenticated Hidden File Discovery via Code With Me Guest Access
Aug 20, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-57727 MEDIUM
JetBrains IntelliJ IDEA < 2025.2 - Cleartext Transmission of Sensitive Information via Remote Reference
Aug 20, 2025
CVSS 4.7
EPSS 0.00
CVE-2025-54538 MEDIUM
JetBrains TeamCity < 2025.07 - Cleartext Storage of Sensitive Information via hg pull Command
Jul 28, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-54537 MEDIUM
JetBrains TeamCity < 2025.07 - Cleartext Storage of Sensitive Information in Memory Snapshots
Jul 28, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-54536 MEDIUM
JetBrains TeamCity < 2025.07 - Cross-Site Request Forgery via GraphQL Endpoint
Jul 28, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-54535 MEDIUM
JetBrains TeamCity <2025.07 - Info Disclosure
Jul 28, 2025
CVSS 5.8
EPSS 0.00
CVE-2025-54534 MEDIUM
JetBrains TeamCity < 2025.07 - Reflected Cross-Site Scripting on agentpushPreset Page
Jul 28, 2025
CVSS 4.8
EPSS 0.01
CVE-2025-54533 MEDIUM
JetBrains TeamCity < 2025.07 - Unauthenticated Build Settings Disclosure via VCS Configuration
Jul 28, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-54532 MEDIUM
JetBrains TeamCity < 2025.07 - Unauthenticated Build Settings Disclosure via Snapshot Dependencies
Jul 28, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-54531 HIGH
JetBrains TeamCity < 2025.07 - Path Traversal via Plugin Unpacking on Windows
Jul 28, 2025
CVSS 7.7
EPSS 0.00
CVE-2025-54530 HIGH
JetBrains TeamCity < 2025.07 - Privilege Escalation via Incorrect Directory Permissions
Jul 28, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-54529 LOW
JetBrains TeamCity < 2025.07 - Cross-Site Request Forgery in OAuth Login Integration
Jul 28, 2025
CVSS 3.7
EPSS 0.00
CVE-2025-54528 MEDIUM
JetBrains TeamCity < 2025.07 - Cross-Site Request Forgery in GitHub App Connection Flow
Jul 28, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-54527 MEDIUM
JetBrains YouTrack <2025.2.86935-2025.3.87344 - CSRF
Jul 28, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-53959 HIGH
JetBrains YouTrack < 2024.3.85077 - Email Spoofing via Administrative API
Jul 15, 2025
CVSS 7.6
EPSS 0.00
CVE-2025-52879 MEDIUM
JetBrains TeamCity < 2025.03.3 - Reflected Cross-Site Scripting in NPM Registry Integration
Jun 23, 2025
CVSS 4.8
EPSS 0.01