CVE-2021-25758

HIGH

Jetbrains Intellij Idea < 2020.3 - Insecure Deserialization

Title source: rule

Description

In JetBrains IntelliJ IDEA before 2020.3, potentially insecure deserialization of the workspace model could lead to local code execution.

References (2)

Scores

CVSS v3 7.8
EPSS 0.0000
EPSS Percentile 0.1%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Classification

CWE
CWE-502
Status published

Affected Products (1)

jetbrains/intellij_idea < 2020.3

Timeline

Published Feb 03, 2021
Tracked Since Feb 18, 2026