jetbrains
582 tracked vulnerabilities.
CVE-2025-59455
MEDIUM
JetBrains TeamCity < 2025.07.2 - Project Isolation Bypass via Race Condition
Sep 17, 2025
CVSS 4.2
EPSS 0.00
CVE-2025-58335
MEDIUM
JetBrains Junie <252.284.66 - Info Disclosure
Aug 28, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-58334
HIGH
JetBrains IDE Services <2025.5.0.1086 - Privilege Escalation
Aug 28, 2025
CVSS 8.1
EPSS 0.00
CVE-2025-57734
MEDIUM
JetBrains TeamCity <2025.07.1 - Info Disclosure
Aug 20, 2025
CVSS 4.3
EPSS 0.01
CVE-2025-57733
MEDIUM
JetBrains TeamCity < 2025.07.1 - SMTP Injection via Email Content Modification
Aug 20, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-57732
HIGH
JetBrains TeamCity < 2025.07.1 - Privilege Escalation via Incorrect Directory Ownership
Aug 20, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-57731
HIGH
JetBrains YouTrack < 2025.2.92387 - Stored Cross-Site Scripting via Mermaid Diagram Content
Aug 20, 2025
CVSS 8.7
EPSS 0.00
CVE-2025-57730
MEDIUM
JetBrains IntelliJ IDEA < 2025.2.0 - HTML Injection via Remote Development Feature
Aug 20, 2025
CVSS 5.2
EPSS 0.00
CVE-2025-57729
MEDIUM
JetBrains IntelliJ IDEA <2025.2 - DoS
Aug 20, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-57728
MEDIUM
JetBrains IntelliJ IDEA < 2025.2 - Unauthenticated Hidden File Discovery via Code With Me Guest Access
Aug 20, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-57727
MEDIUM
JetBrains IntelliJ IDEA < 2025.2 - Cleartext Transmission of Sensitive Information via Remote Reference
Aug 20, 2025
CVSS 4.7
EPSS 0.00
CVE-2025-54538
MEDIUM
JetBrains TeamCity < 2025.07 - Cleartext Storage of Sensitive Information via hg pull Command
Jul 28, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-54537
MEDIUM
JetBrains TeamCity < 2025.07 - Cleartext Storage of Sensitive Information in Memory Snapshots
Jul 28, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-54536
MEDIUM
JetBrains TeamCity < 2025.07 - Cross-Site Request Forgery via GraphQL Endpoint
Jul 28, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-54535
MEDIUM
JetBrains TeamCity <2025.07 - Info Disclosure
Jul 28, 2025
CVSS 5.8
EPSS 0.00
CVE-2025-54534
MEDIUM
JetBrains TeamCity < 2025.07 - Reflected Cross-Site Scripting on agentpushPreset Page
Jul 28, 2025
CVSS 4.8
EPSS 0.01
CVE-2025-54533
MEDIUM
JetBrains TeamCity < 2025.07 - Unauthenticated Build Settings Disclosure via VCS Configuration
Jul 28, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-54532
MEDIUM
JetBrains TeamCity < 2025.07 - Unauthenticated Build Settings Disclosure via Snapshot Dependencies
Jul 28, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-54531
HIGH
JetBrains TeamCity < 2025.07 - Path Traversal via Plugin Unpacking on Windows
Jul 28, 2025
CVSS 7.7
EPSS 0.00
CVE-2025-54530
HIGH
JetBrains TeamCity < 2025.07 - Privilege Escalation via Incorrect Directory Permissions
Jul 28, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-54529
LOW
JetBrains TeamCity < 2025.07 - Cross-Site Request Forgery in OAuth Login Integration
Jul 28, 2025
CVSS 3.7
EPSS 0.00
CVE-2025-54528
MEDIUM
JetBrains TeamCity < 2025.07 - Cross-Site Request Forgery in GitHub App Connection Flow
Jul 28, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-54527
MEDIUM
JetBrains YouTrack <2025.2.86935-2025.3.87344 - CSRF
Jul 28, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-53959
HIGH
JetBrains YouTrack < 2024.3.85077 - Email Spoofing via Administrative API
Jul 15, 2025
CVSS 7.6
EPSS 0.00
CVE-2025-52879
MEDIUM
JetBrains TeamCity < 2025.03.3 - Reflected Cross-Site Scripting in NPM Registry Integration
Jun 23, 2025
CVSS 4.8
EPSS 0.01
Products
teamcity 273
youtrack 116
intellij_idea 63
hub 36
ktor 21
TeamCity 17
YouTrack 14
toolbox 11
pycharm 9
rider 8
kotlin 7
IntelliJ IDEA 6
youtrack_mobile 6
goland 5
upsource 5
webstorm 5
phpstorm 4
resharper 4
rubymine 4
Hub 3
code_with_me 3
junie 3
space 3
clion 2
dottrace 2
mps 2
Datalore 1
GoLand 1
Junie 1
Kotlin 1
Quick Filters