CVE-2022-46827

In JetBrains IntelliJ IDEA before 2022.3 an XXE attack leading to SSRF via requests to custom plugin repositories was possible...

CVE-2022-46829

In JetBrains JetBrains Gateway before 2022.3 a client could connect without a valid token if the host consented...

JetBrains IntelliJ IDEA 代码问题漏洞

JetBrains IntelliJ IDEA is a set of integrated development environments for the Java language from the Czech company JetBrains. A security vulnerability exists in JetBrains IntelliJ IDEA versions prior to 2022.3, which stems from a DYLIB injection that can be performed on macOS...

JetBrains IntelliJ IDEA 加密问题漏洞

JetBrains IntelliJ IDEA is a set of integrated development environments for the Java language from the Czech company JetBrains. A security vulnerability exists in JetBrains IntelliJ IDEA versions prior to 2022.3 that stems from the built-in web server disclosing information about open projects...

PT-2022-27983 · Jetbrains · Intellij Idea

Name of the Vulnerable Software and Affected Versions: JetBrains IntelliJ IDEA versions prior to 2022.3 Description: The issue allows an arbitrary file to be read by exploiting a path traversal vulnerability in the built-in web server. Recommendations: For versions prior to 2022.3, update to...

PT-2022-27986 · Jetbrains · Jetbrains Gateway

Name of the Vulnerable Software and Affected Versions: JetBrains Gateway versions prior to 2022.3 Description: The issue allows a client to connect without a valid token if the host consents. This could potentially lead to unauthorized access. Recommendations: For versions prior to 2022.3, update...