Toolbox

toolbox

Vendor: Jetbrains • 11 CVEs

CVEs (11)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-43014 1Jetbrains 1Toolbox Apr 23, 2025 Apr 17, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 In JetBrains Toolbox App before 2.6 the SSH plugin established connections without sufficient user confirmation
CVE-2025-43013 1Jetbrains 1Toolbox Apr 23, 2025 Apr 17, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 In JetBrains Toolbox App before 2.6 unencrypted credential transmission during SSH authentication was possible
CVE-2025-43012 1Jetbrains 1Toolbox Oct 1, 2025 Apr 17, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 In JetBrains Toolbox App before 2.6 command injection in SSH plugin was possible
CVE-2025-42921 1Jetbrains 1Toolbox Apr 23, 2025 Apr 17, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 In JetBrains Toolbox App before 2.6 host key verification was missing in SSH plugin
CVE-2024-24943 1Jetbrains 1Toolbox Nov 21, 2024 Feb 6, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 In JetBrains Toolbox App before 2.2 a DoS attack was possible via a malicious SVG image
CVE-2022-48481 1Jetbrains 1Toolbox Nov 21, 2024 Apr 28, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 In JetBrains Toolbox App before 1.28 a DYLIB injection on macOS was possible
CVE-2020-25207 1Jetbrains 1Toolbox Nov 21, 2024 Nov 16, 2020 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 JetBrains ToolBox before version 1.18 is vulnerable to Remote Code Execution via a browser protocol handler.
CVE-2020-25013 1Jetbrains 1Toolbox Nov 21, 2024 Nov 16, 2020 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 JetBrains ToolBox before version 1.18 is vulnerable to a Denial of Service attack via a browser protocol handler.
CVE-2020-15827 1Jetbrains 1Toolbox Nov 21, 2024 Aug 8, 2020 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 In JetBrains ToolBox version 1.17 before 1.17.6856, the set of signature verifications omitted the jetbrains-toolbox.exe file.
CVE-2019-18368 1Jetbrains 1Toolbox Nov 21, 2024 Oct 31, 2019 N/A· v4 7.3 HIGH· v3 7.5 HIGH· v2 In JetBrains Toolbox App before 1.15.5666 for Windows, privilege escalation was possible.
CVE-2019-14959 1Jetbrains 1Toolbox Nov 21, 2024 Oct 2, 2019 N/A· v4 5.9 MEDIUM· v3 4.3 MEDIUM· v2 JetBrains Toolbox before 1.15.5605 was resolving an internal URL via a cleartext http connection.