Lucene search
JetBrainsCVELIST:CVE-2024-24941HistoryFeb 06, 2024 - 9:21 a.m.
CVE-2024-24941
2024-02-0609:21:30
JetBrains
www.cve.org
5
cve-2024-24941
jetbrains
intellij idea
plugin
vulnerability
jetbrains space
authentication
token
url
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
17.0%
In JetBrains IntelliJ IDEA before 2023.3.3 a plugin for JetBrains Space was able to send an authentication token to an inappropriate URL
CNA Affected
[
{
"vendor": "JetBrains",
"product": "IntelliJ IDEA",
"versions": [
{
"version": "0",
"status": "affected",
"lessThan": "2023.3.3",
"versionType": "semver"
}
],
"defaultStatus": "unaffected"
}
]Related
prion
prion
Authentication flaw
2024-02-06 10:15:00
vulnrichment
vulnrichment
CVE-2024-24941
2024-02-06 09:21:30
cve
cve
CVE-2024-24941
2024-02-06 10:15:11
nvd
nvd
CVE-2024-24941
2024-02-06 10:15:11
nessus
nessus
JetBrains IntelliJ IDEA < 2023.3.3 Multiple Vulnerabilities (macOS)
2024-02-09 00:00:00
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
17.0%
Related for CVELIST:CVE-2024-24941