Jetbrains: Security Vulnerabilities
In JetBrains Toolbox App before 2.6 unencrypted credential transmission during SSH authentication was possible
CVSS Score
6.9
EPSS Score
0.001
Published
2025-04-17
In JetBrains IntelliJ IDEA before 2024.3, 2024.2.4 source code could be logged in the idea.log file
CVSS Score
3.3
EPSS Score
0.004
Published
2025-04-03
In JetBrains TeamCity before 2025.03 exception could lead to credential leakage on Cloud Profiles page
CVSS Score
2.7
EPSS Score
0.003
Published
2025-03-27
In JetBrains TeamCity before 2025.03 base64 encoded password could be exposed in build log
CVSS Score
4.3
EPSS Score
0.009
Published
2025-03-27
In JetBrains TeamCity before 2025.03 stored XSS was possible on Cloud Profiles page
CVSS Score
4.6
EPSS Score
0.169
Published
2025-03-27
In JetBrains GoLand before 2025.1 an XXE during debugging was possible
CVSS Score
4.1
EPSS Score
0.002
Published
2025-03-25
In JetBrains Ktor before 3.1.1 an HTTP Request Smuggling was possible
CVSS Score
5.3
EPSS Score
0.003
Published
2025-03-12
In JetBrains Runtime before 21.0.6b872.80 arbitrary dynamic library execution due to insecure macOS flags was possible
CVSS Score
5.2
EPSS Score
0.002
Published
2025-03-12
In JetBrains TeamCity before 2024.12.2 improper Kubernetes connection settings could expose sensitive resources
CVSS Score
7.7
EPSS Score
0.004
Published
2025-02-11
In JetBrains TeamCity before 2024.12.2 several DOM-based XSS were possible on the Code Inspection Report tab
CVSS Score
4.6
EPSS Score
0.003
Published
2025-02-11