Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2021-45977
HistoryFeb 25, 2022 - 3:15 p.m.

CVE-2021-45977

2022-02-2515:15:09
[email protected]
web.nvd.nist.gov
723
cve-2021-45977
jetbrains
intellij idea
pycharm
goland
phpstorm
rubymine
clion
webstorm
ip address vulnerability

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.4 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

60.5%

JSON

JetBrains IntelliJ IDEA 2021.3.1 Preview, IntelliJ IDEA 2021.3.1 RC, PyCharm Professional 2021.3.1 RC, GoLand 2021.3.1, PhpStorm 2021.3.1 Preview, PhpStorm 2021.3.1 RC, RubyMine 2021.3.1 Preview, RubyMine 2021.3.1 RC, CLion 2021.3.1, WebStorm 2021.3.1 Preview, and WebStorm 2021.3.1 RC (used as Remote Development backend IDEs) bind to the 0.0.0.0 IP address. The fixed versions are: IntelliJ IDEA 2021.3.1, PyCharm Professional 2021.3.1, GoLand 2021.3.2, PhpStorm 2021.3.1 (213.6461.83), RubyMine 2021.3.1, CLion 2021.3.2, and WebStorm 2021.3.1.

Affected configurations

NVD
Node
jetbrainsclionMatch2021.3.1
OR
jetbrainsgolandMatch2021.3.1
OR
jetbrainsintellij_ideaMatch2021.3.1preview
OR
jetbrainsintellij_ideaMatch2021.3.1rc
OR
jetbrainsphpstormMatch2021.3.1preview
OR
jetbrainsphpstormMatch2021.3.1rc
OR
jetbrainspycharmMatch2021.3.12021.3.1professional
OR
jetbrainsrubymineMatch2021.3.1preview
OR
jetbrainsrubymineMatch2021.3.1rc
OR
jetbrainswebstormMatch2021.3.1preview
OR
jetbrainswebstormMatch2021.3.1rc

Related

nvd 1
prion 1
cvelist 1
jetbrains 1
nvd
nvd
CVE-2021-45977
2022-02-25 15:15:09
prion
prion
Design/Logic Flaw
2022-02-25 15:15:00
cvelist
cvelist
CVE-2021-45977
2022-02-25 14:36:13
jetbrains
jetbrains
JetBrains Security Bulletin Q4 2021
2022-02-08 00:00:00

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.4 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

60.5%

JSON
Related for CVE-2021-45977
nvd1prion1cvelist1jetbrains1