CVE-2026-59792
CRITICALJetBrains IntelliJ IDEA - Workspace ID Path Traversal Code Execution
Title source: manualDescription
In JetBrains IntelliJ IDEA before 2026.1.4, 2026.2 code execution via path traversal in project workspace ID handling was possible
References (1)
Core 1
Core References
Scores
CVSS v3
9.6
EPSS
0.0042
EPSS Percentile
34.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:L
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-23
Status
published
Products (2)
JetBrains/IntelliJ IDEA
< 2026.1.4,
2026.2
jetbrains/intellij_idea
< 2026.1.4
Published
Jul 10, 2026
Tracked Since
Jul 10, 2026