Jetbrains: Security Vulnerabilities
In JetBrains TeamCity before 2022.04.4 environmental variables of "password" type could be logged when using custom Perforce executable
CVSS Score
4.4
EPSS Score
0.0
Published
2022-09-23
The installer of JetBrains IntelliJ IDEA before 2022.2.2 was vulnerable to EXE search order hijacking
CVSS Score
7.5
EPSS Score
0.0
Published
2022-09-19
JetBrains Ktor before 2.1.0 was vulnerable to the Reflect File Download attack
CVSS Score
4.7
EPSS Score
0.0
Published
2022-08-12
In JetBrains Ktor before 2.1.0 the wrong authentication provider could be selected in some cases
CVSS Score
5.3
EPSS Score
0.0
Published
2022-08-12
In JetBrains TeamCity before 2022.04.3 the private SSH key could be written to the server log in some cases
CVSS Score
3.2
EPSS Score
0.0
Published
2022-08-10
In JetBrains Rider before 2022.2 Trust and Open Project dialog could be bypassed, leading to local code execution
CVSS Score
4.1
EPSS Score
0.0
Published
2022-08-03
In JetBrains IntelliJ IDEA before 2022.2 local code execution via a Vagrant executable was possible
CVSS Score
3.9
EPSS Score
0.0
Published
2022-07-28
In JetBrains IntelliJ IDEA before 2022.2 email address validation in the "Git User Name Is Not Defined" dialog was missed
CVSS Score
3.6
EPSS Score
0.0
Published
2022-07-28
In JetBrains TeamCity before 2022.04.2 the private SSH key could be written to the build log in some cases
CVSS Score
4.1
EPSS Score
0.0
Published
2022-07-20
In JetBrains TeamCity before 2022.04.2 build parameter injection was possible
CVSS Score
5.4
EPSS Score
0.0
Published
2022-07-20