Jetbrains: Security Vulnerabilities
In JetBrains YouTrack before 2024.3.44799 token could be revealed on Imports page
CVSS Score
4.1
EPSS Score
0.0
Published
2024-09-19
In JetBrains YouTrack before 2024.3.44799 user without appropriate permissions could restore workflows attached to a project
CVSS Score
4.3
EPSS Score
0.0
Published
2024-09-19
In JetBrains IntelliJ IDEA before 2024.1 hTML injection via the project name was possible
CVSS Score
3.3
EPSS Score
0.0
Published
2024-09-16
In JetBrains TeamCity before 2024.07.1 multiple stored XSS was possible on Clouds page
CVSS Score
4.6
EPSS Score
0.25
Published
2024-08-16
In JetBrains TeamCity before 2024.07.1 self XSS was possible in the HashiCorp Vault plugin
CVSS Score
3.7
EPSS Score
0.02
Published
2024-08-16
In JetBrains TeamCity before 2024.07.1 reflected XSS was possible on the agentPushPreset page
CVSS Score
3.5
EPSS Score
0.002
Published
2024-08-16
In JetBrains TeamCity before 2024.07.1 reflected XSS was possible in the AWS Core plugin
CVSS Score
4.6
EPSS Score
0.292
Published
2024-08-16
In JetBrains TeamCity before 2024.07.1 possible privilege escalation due to incorrect directory permissions
CVSS Score
7.5
EPSS Score
0.0
Published
2024-08-06
In JetBrains TeamCity before 2024.07 access tokens could continue working after deletion or expiration
CVSS Score
7.4
EPSS Score
0.0
Published
2024-07-22
In JetBrains TeamCity before 2024.07 comparison of authorization tokens took non-constant time
CVSS Score
2.6
EPSS Score
0.0
Published
2024-07-22