Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / jetbrains

jetbrains

543 tracked vulnerabilities.

CVE-2025-43015 HIGH

JetBrains RubyMine < 2025.1 - Insecure Default Port Binding in Remote Interpreter

CVE-2025-43014 MEDIUM

JetBrains Toolbox < 2.6 - Missing Critical Step in SSH Authentication

CVE-2025-43013 MEDIUM

JetBrains Toolbox App <2.6 - Info Disclosure

CVE-2025-43012 HIGH

JetBrains Toolbox App <2.6 - Command Injection

CVE-2025-42921 MEDIUM

JetBrains Toolbox App <2.6 - Privilege Escalation

CVE-2025-32054 LOW

JetBrains IntelliJ IDEA 2024.2.4-2024.3.0 - Sensitive Information Exposure in Log File

CVE-2025-31141 LOW

JetBrains TeamCity < 2025.03 - Credential Leakage via Cloud Profiles Page Exception

CVE-2025-31140 MEDIUM

JetBrains TeamCity < 2025.03 - Stored Cross-Site Scripting on Cloud Profiles Page

CVE-2025-31139 MEDIUM

JetBrains TeamCity < 2025.03 - Sensitive Information Exposure in Build Log

CVE-2025-29932 MEDIUM

JetBrains GoLand < 2025.1 - XML External Entity Injection during Debugging

CVE-2025-29904 MEDIUM

JetBrains Ktor < 3.1.1 - HTTP Request Smuggling

CVE-2025-29903 MEDIUM

JetBrains Runtime <21.0.6b872.80 - Code Injection

CVE-2025-26493 MEDIUM

JetBrains TeamCity < 2024.12.2 - DOM-based Cross-Site Scripting on Code Inspection Report Tab

CVE-2025-26492 HIGH

JetBrains TeamCity < 2024.12.2 - Insufficiently Protected Kubernetes Credentials

CVE-2025-23385 HIGH

JetBrains dotTrace, ReSharper, Rider < 2024.1.7 & ETW Host Service < 16.43 - Local Privilege Escalation

CVE-2025-24461 MEDIUM

JetBrains TeamCity < 2024.12.1 - Unauthenticated Decryption of Connection Secrets via Test Connection Endpoint

CVE-2025-24460 MEDIUM

JetBrains TeamCity < 2024.12.1 - Unauthenticated Project Name Disclosure via Agent Pool

CVE-2025-24459 MEDIUM

JetBrains TeamCity < 2024.12.1 - Reflected Cross-Site Scripting on Vault Connection Page

CVE-2025-24458 HIGH

JetBrains YouTrack < 2024.3.55417 - Account Takeover via Spoofed Email and Helpdesk Integration

CVE-2025-24457 MEDIUM

JetBrains YouTrack < 2024.3.55417 - Sensitive Information Exposure via Log File Insertion

CVE-2025-24456 MEDIUM

JetBrains Hub < 2024.3.55417 - Privilege Escalation via LDAP Authentication Mapping

CVE-2024-56356 MEDIUM

JetBrains TeamCity < 2024.12 - XML External Entity Injection via Insecure XML Parser Configuration

CVE-2024-56355 MEDIUM

JetBrains TeamCity < 2024.12 - Cross-Site Scripting via RemoteBuildLogController Response

CVE-2024-56354 MEDIUM

JetBrains TeamCity < 2024.12 - Insufficiently Protected Credentials

CVE-2024-56353 MEDIUM

JetBrains TeamCity <2024.12 - Info Disclosure

Previous Page 4 of 22 Next

Products

teamcity 258 youtrack 103 intellij_idea 58 hub 33 ktor 21 toolbox 11 pycharm 8 rider 8 kotlin 6 youtrack_mobile 6 upsource 5 webstorm 5 goland 4 phpstorm 4 resharper 4 rubymine 4 code_with_me 3 junie 3 space 3 TeamCity 2 clion 2 dottrace 2 mps 2 Datalore 1 IntelliJ IDEA 1 Junie 1 YouTrack 1 aqua 1 datagrip 1 datalore 1

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy