Lucene search
JetBrainsCVELIST:CVE-2022-48432HistoryMar 29, 2023 - 12:07 p.m.
CVE-2022-48432
2023-03-2912:07:20
JetBrains
www.cve.org
jetbrains
intellij idea
chromium
sandboxing
security vulnerability
5.2 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:L
8.9 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
In JetBrains IntelliJ IDEA before 2023.1 the bundled version of Chromium wasn’t sandboxed.
CNA Affected
[
{
"vendor": "JetBrains",
"product": "IntelliJ IDEA",
"versions": [
{
"version": "0",
"status": "affected",
"lessThan": "2023.1",
"versionType": "semver"
}
],
"defaultStatus": "unaffected"
}
]Related
cve
cve
CVE-2022-48432
2023-03-29 13:15:08
nvd
nvd
CVE-2022-48432
2023-03-29 13:15:08
prion
prion
Design/Logic Flaw
2023-03-29 13:15:00
5.2 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:L
8.9 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
Related for CVELIST:CVE-2022-48432