Jetbrains: >> Intellij Idea >> 2017.2.2 Security Vulnerabilities
In JetBrains IntelliJ IDEA before 2019.3, some Maven repositories were accessed via HTTP instead of HTTPS.
CVSS Score
7.4
EPSS Score
0.0
Published
2020-01-30
Ports listened to by JetBrains IntelliJ IDEA before 2019.3 were exposed to the network.
CVSS Score
7.5
EPSS Score
0.0
Published
2020-01-30
JetBrains IntelliJ IDEA before 2019.2 allows local user privilege escalation, potentially leading to arbitrary code execution.
CVSS Score
5.3
EPSS Score
0.0
Published
2019-10-31
JetBrains IntelliJ IDEA before 2019.2 was resolving the markdown plantuml artifact download link via a cleartext http connection.
CVSS Score
5.9
EPSS Score
0.0
Published
2019-10-01
In several versions of JetBrains IntelliJ IDEA Ultimate, creating Task Servers configurations leads to saving a cleartext unencrypted record of the server credentials in the IDE configuration files. The issue has been fixed in the following versions: 2019.1, 2018.3.5, 2018.2.8, and 2018.1.8.
CVSS Score
9.8
EPSS Score
0.0
Published
2019-07-03
Page 5