CVE-2020-11694
HIGHJetBrains PyCharm 2019.2.5 and 2019.3 - Insufficiently Protected Credentials
Title source: llmDescription
In JetBrains PyCharm 2019.2.5 and 2019.3 on Windows, Apple Notarization Service credentials were included. This is fixed in 2019.2.6 and 2019.3.3.
References (3)
Core 3
Core References
Exploit, Third Party Advisory x_refsource_misc
https://twitter.com/_ruby/status/1234457530790600704
Product x_refsource_misc
https://gist.github.com/rubyroobs/5d273895512df5b86d5e7e1a703c8028
Vendor Advisory x_refsource_confirm
https://blog.jetbrains.com/blog/2020/04/22/jetbrains-security-bulletin-q1-2020/
Scores
CVSS v3
7.5
EPSS
0.0000
EPSS Percentile
0.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-522
CWE-312
Status
published
Products (2)
jetbrains/pycharm
2019.2.5
jetbrains/pycharm
2019.3
Published
Apr 10, 2020
Tracked Since
Feb 18, 2026