Description
In JetBrains IntelliJ IDEA before 2025.2 unexpected plugin startup was possible due to automatic LSP server start
Scores
CVSS v3
6.5
EPSS
0.0000
EPSS Percentile
0.0%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:L
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-829
Status
published
Products (1)
jetbrains/intellij_idea
< 2025.2
Published
Aug 20, 2025
Tracked Since
Feb 18, 2026