Jetbrains

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-43195 1Jetbrains 1Teamcity Nov 21, 2024 Nov 9, 2021 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 In JetBrains TeamCity before 2021.1.2, some HTTP security headers were missing.
CVE-2021-43194 1Jetbrains 1Teamcity Nov 21, 2024 Nov 9, 2021 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 In JetBrains TeamCity before 2021.1.2, user enumeration was possible.
CVE-2021-43193 1Jetbrains 1Teamcity Nov 21, 2024 Nov 9, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 In JetBrains TeamCity before 2021.1.2, remote code execution via the agent push functionality is possible.
CVE-2021-43192 1Jetbrains 1Youtrack Mobile Nov 21, 2024 Nov 9, 2021 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 In JetBrains YouTrack Mobile before 2021.2, iOS URL scheme hijacking is possible.
CVE-2021-43191 1Jetbrains 1Youtrack Mobile Nov 21, 2024 Nov 9, 2021 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 JetBrains YouTrack Mobile before 2021.2, is missing the security screen on Android and iOS.
CVE-2021-43190 1Jetbrains 1Youtrack Mobile Nov 21, 2024 Nov 9, 2021 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 In JetBrains YouTrack Mobile before 2021.2, task hijacking on Android is possible.
CVE-2021-43189 1Jetbrains 1Youtrack Mobile Nov 21, 2024 Nov 9, 2021 N/A· v4 7.3 HIGH· v3 7.5 HIGH· v2 In JetBrains YouTrack Mobile before 2021.2, access token protection on Android is incomplete.
CVE-2021-43188 1Jetbrains 1Youtrack Mobile Nov 21, 2024 Nov 9, 2021 N/A· v4 7.3 HIGH· v3 7.5 HIGH· v2 In JetBrains YouTrack Mobile before 2021.2, access token protection on iOS is incomplete.
CVE-2021-43187 1Jetbrains 1Youtrack Mobile Nov 21, 2024 Nov 9, 2021 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 In JetBrains YouTrack Mobile before 2021.2, the client-side cache on iOS could contain sensitive information.
CVE-2021-43186 1Jetbrains 1Youtrack Nov 21, 2024 Nov 9, 2021 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 JetBrains YouTrack before 2021.3.24402 is vulnerable to stored XSS.
CVE-2021-43185 1Jetbrains 1Youtrack Nov 21, 2024 Nov 9, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 JetBrains YouTrack before 2021.3.23639 is vulnerable to Host header injection.
CVE-2021-43184 1Jetbrains 1Youtrack Nov 21, 2024 Nov 9, 2021 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 In JetBrains YouTrack before 2021.3.21051, stored XSS is possible.
CVE-2021-43183 1Jetbrains 1Hub Nov 21, 2024 Nov 9, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 In JetBrains Hub before 2021.1.13690, the authentication throttling mechanism could be bypassed.
CVE-2021-37554 1Jetbrains 1Youtrack Nov 21, 2024 Aug 6, 2021 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 In JetBrains YouTrack before 2021.3.21051, a user could see boards without having corresponding permissions.
CVE-2021-37553 1Jetbrains 1Youtrack Nov 21, 2024 Aug 6, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 In JetBrains YouTrack before 2021.2.16363, an insecure PRNG was used.
CVE-2021-37552 1Jetbrains 1Youtrack Nov 21, 2024 Aug 6, 2021 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 In JetBrains YouTrack before 2021.2.17925, stored XSS was possible.
CVE-2021-37551 1Jetbrains 1Youtrack Nov 21, 2024 Aug 6, 2021 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 In JetBrains YouTrack before 2021.2.16363, system user passwords were hashed with SHA-256.
CVE-2021-37550 1Jetbrains 1Youtrack Nov 21, 2024 Aug 6, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 In JetBrains YouTrack before 2021.2.16363, time-unsafe comparisons were used.
CVE-2021-37549 1Jetbrains 1Youtrack Nov 21, 2024 Aug 6, 2021 N/A· v4 9.1 CRITICAL· v3 6.4 MEDIUM· v2 In JetBrains YouTrack before 2021.1.11111, sandboxing in workflows was insufficient.
CVE-2021-37548 1Jetbrains 1Teamcity Nov 21, 2024 Aug 6, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 In JetBrains TeamCity before 2021.1, passwords in cleartext sometimes could be stored in VCS.

Previous 1...181920...29 Next