Jetbrains

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-51655 1Jetbrains 1Intellij Idea Nov 21, 2024 Dec 21, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 In JetBrains IntelliJ IDEA before 2023.3.2 code execution was possible in Untrusted Project mode via a malicious plugin repository specified in the project configuration
CVE-2023-50871 1Jetbrains 1Youtrack Nov 21, 2024 Dec 15, 2023 N/A· v4 4.3 MEDIUM· v3 N/A· v2 In JetBrains YouTrack before 2023.3.22268 authorization check for inline comments inside thread replies was missed
CVE-2023-50870 1Jetbrains 1Teamcity Nov 21, 2024 Dec 15, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 In JetBrains TeamCity before 2023.11.1 a CSRF on login was possible
CVE-2023-45613 1Jetbrains 1Ktor Nov 21, 2024 Oct 9, 2023 N/A· v4 9.1 CRITICAL· v3 N/A· v2 In JetBrains Ktor before 2.3.5 server certificates were not verified
CVE-2023-45612 1Jetbrains 1Ktor Nov 21, 2024 Oct 9, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 In JetBrains Ktor before 2.3.5 default configuration of ContentNegotiation with XML format was vulnerable to XXE
CVE-2023-43566 1Jetbrains 1Teamcity Nov 21, 2024 Sep 19, 2023 N/A· v4 5.4 MEDIUM· v3 N/A· v2 In JetBrains TeamCity before 2023.05.4 stored XSS was possible during nodes configuration
CVE-2023-42793 1Jetbrains 1Teamcity Oct 24, 2025 Sep 19, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 In JetBrains TeamCity before 2023.05.4 authentication bypass leading to RCE on TeamCity Server was possible
CVE-2023-41250 1Jetbrains 1Teamcity Nov 21, 2024 Aug 25, 2023 N/A· v4 6.1 MEDIUM· v3 N/A· v2 In JetBrains TeamCity before 2023.05.3 reflected XSS was possible during user registration
CVE-2023-41249 1Jetbrains 1Teamcity Nov 21, 2024 Aug 25, 2023 N/A· v4 6.1 MEDIUM· v3 N/A· v2 In JetBrains TeamCity before 2023.05.3 reflected XSS was possible during copying Build Step
CVE-2023-41248 1Jetbrains 1Teamcity Nov 21, 2024 Aug 25, 2023 N/A· v4 5.4 MEDIUM· v3 N/A· v2 In JetBrains TeamCity before 2023.05.3 stored XSS was possible during Cloud Profiles configuration
CVE-2023-39261 1Jetbrains 1Intellij Idea Nov 21, 2024 Jul 26, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 In JetBrains IntelliJ IDEA before 2023.2 plugin for Space was requesting excessive permissions
CVE-2023-39175 1Jetbrains 1Teamcity Nov 21, 2024 Jul 25, 2023 N/A· v4 6.1 MEDIUM· v3 N/A· v2 In JetBrains TeamCity before 2023.05.2 reflected XSS via GitHub integration was possible
CVE-2023-39174 1Jetbrains 1Teamcity Nov 21, 2024 Jul 25, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 In JetBrains TeamCity before 2023.05.2 a ReDoS attack was possible via integration with issue trackers
CVE-2023-39173 1Jetbrains 1Teamcity Nov 21, 2024 Jul 25, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 In JetBrains TeamCity before 2023.05.2 a token with limited permissions could be used to gain full account access
CVE-2023-38069 1Jetbrains 1Intellij Idea Nov 21, 2024 Jul 12, 2023 N/A· v4 3.3 LOW· v3 N/A· v2 In JetBrains IntelliJ IDEA before 2023.1.4 license dialog could be suppressed in certain cases
CVE-2023-38068 1Jetbrains 1Youtrack Nov 21, 2024 Jul 12, 2023 N/A· v4 7.3 HIGH· v3 N/A· v2 In JetBrains YouTrack before 2023.1.16597 captcha was not properly validated for Helpdesk forms
CVE-2023-38067 1Jetbrains 1Teamcity Nov 21, 2024 Jul 12, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 In JetBrains TeamCity before 2023.05.1 build parameters of the "password" type could be written to the agent log
CVE-2023-38066 1Jetbrains 1Teamcity Nov 21, 2024 Jul 12, 2023 N/A· v4 6.1 MEDIUM· v3 N/A· v2 In JetBrains TeamCity before 2023.05.1 reflected XSS via the Referer header was possible during artifact downloads
CVE-2023-38065 1Jetbrains 1Teamcity Nov 21, 2024 Jul 12, 2023 N/A· v4 5.4 MEDIUM· v3 N/A· v2 In JetBrains TeamCity before 2023.05.1 stored XSS while viewing the build log was possible
CVE-2023-38064 1Jetbrains 1Teamcity Nov 21, 2024 Jul 12, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 In JetBrains TeamCity before 2023.05.1 build chain parameters of the "password" type could be written to the agent log

Previous 1...111213...29 Next