Jetbrains: Security Vulnerabilities
In JetBrains IntelliJ IDEA before 2023.3.2 code execution was possible in Untrusted Project mode via a malicious plugin repository specified in the project configuration
CVSS Score
6.3
EPSS Score
0.0
Published
2023-12-21
In JetBrains TeamCity before 2023.11.1 a CSRF on login was possible
CVSS Score
4.3
EPSS Score
0.0
Published
2023-12-15
In JetBrains YouTrack before 2023.3.22268 authorization check for inline comments inside thread replies was missed
CVSS Score
4.3
EPSS Score
0.0
Published
2023-12-15
In JetBrains Ktor before 2.3.5 default configuration of ContentNegotiation with XML format was vulnerable to XXE
CVSS Score
8.6
EPSS Score
0.0
Published
2023-10-09
In JetBrains Ktor before 2.3.5 server certificates were not verified
CVSS Score
6.8
EPSS Score
0.0
Published
2023-10-09
CVE-2023-42793
In JetBrains TeamCity before 2023.05.4 authentication bypass leading to RCE on TeamCity Server was possible
Known exploited
CVSS Score
9.8
EPSS Score
0.946
Published
2023-09-19
In JetBrains TeamCity before 2023.05.4 stored XSS was possible during nodes configuration
CVSS Score
3.5
EPSS Score
0.001
Published
2023-09-19
In JetBrains TeamCity before 2023.05.3 stored XSS was possible during Cloud Profiles configuration
CVSS Score
4.6
EPSS Score
0.01
Published
2023-08-25
In JetBrains TeamCity before 2023.05.3 reflected XSS was possible during copying Build Step
CVSS Score
4.6
EPSS Score
0.873
Published
2023-08-25
In JetBrains TeamCity before 2023.05.3 reflected XSS was possible during user registration
CVSS Score
3.5
EPSS Score
0.003
Published
2023-08-25