Vulnerabilities
Vulnerable Software
Jetbrains:  Security Vulnerabilities
In JetBrains IntelliJ IDEA before 2020.3, potentially insecure deserialization of the workspace model could lead to local code execution.
CVSS Score
7.8
EPSS Score
0.01
Published
2021-02-03
In JetBrains Hub before 2020.1.12629, an authenticated user can delete 2FA settings of any other user.
CVSS Score
6.5
EPSS Score
0.007
Published
2021-02-03
In JetBrains Hub before 2020.1.12669, information disclosure via the public API was possible.
CVSS Score
5.3
EPSS Score
0.009
Published
2021-02-03
In JetBrains Ktor before 1.5.0, a birthday attack on SessionStorage key was possible.
CVSS Score
5.3
EPSS Score
0.005
Published
2021-02-03
In JetBrains Ktor before 1.4.3, HTTP Request Smuggling was possible.
CVSS Score
5.3
EPSS Score
0.008
Published
2021-02-03
In JetBrains Ktor before 1.4.2, weak cipher suites were enabled by default.
CVSS Score
5.3
EPSS Score
0.005
Published
2021-02-03
In JetBrains YouTrack before 2020.4.4701, CSRF via attachment upload was possible.
CVSS Score
8.8
EPSS Score
0.007
Published
2021-02-03
In JetBrains YouTrack before 2020.4.4701, improper resource access checks were made.
CVSS Score
5.3
EPSS Score
0.014
Published
2021-02-03
In JetBrains YouTrack before 2020.4.4701, an attacker could enumerate users via the REST API without appropriate permissions.
CVSS Score
5.3
EPSS Score
0.014
Published
2021-02-03
In JetBrains Kotlin before 1.4.21, a vulnerable Java API was used for temporary file and folder creation. An attacker was able to read data from such files and list directories due to insecure permissions.
CVSS Score
5.3
EPSS Score
0.026
Published
2021-02-03


Contact Us

Shodan ® - All rights reserved