14 matches found
CVE-2021-37548
In JetBrains TeamCity before 2021.1, passwords in cleartext sometimes could be stored in VCS...
PT-2023-7427 · Intel · Intel Soc Watch
Name of the Vulnerable Software and Affected Versions: Intel SoC Watch versions prior to 2021.1 Description: The issue is related to a heap-based overflow in Intel SoC Watch software, which may allow a privileged user to potentially enable escalation of privilege via local access. This could...
Jetbrains JetBrains TeamCity 安全漏洞
TeamCity is a Java-based build management and continuous integration server from JetBrains. An information disclosure vulnerability exists in JetBrains TeamCity versions prior to 2021.1. An attacker can exploit this vulnerability to obtain information via the Docker Registry connection dialog...
CVE-2021-37546
In JetBrains TeamCity before 2021.1, an insecure key generation mechanism for encrypted properties was used...
CVE-2021-31898
In JetBrains WebStorm before 2021.1, HTTP requests were used instead of HTTPS...
CVE-2021-31899
In JetBrains Code With Me bundled to the compatible IDEs before version 2021.1, the client could execute code in read-only mode...
CVE-2021-31900
In JetBrains Code With Me bundled to the compatible IDE versions before 2021.1, a client could open a browser on a host...
Jetbrains JetBrains IntelliJ IDEA 资源管理错误漏洞
JetBrains IntelliJ IDEA is a Czech company JetBrains set of integrated development environment for the Java language . A denial of service vulnerability exists in JetBrains IntelliJ IDEA versions prior to 2021.1. The vulnerability stems from the program's unrestricted resource allocation and can ...
JetBrains WebStorm 安全漏洞
JetBrains WebStorm is a JavaScript integrated development environment from Czech software development company JetBrains. versions prior to JetBrains WebStorm 2021.1 have a local code execution vulnerability that could be exploited by an attacker to make WebStrom execute local code when pulling co...
CVE-2021-28157
An SQL Injection issue in Devolutions Server before 2021.1 and Devolutions Server LTS before 2020.3.18 allows an administrative user to execute arbitrary SQL commands via a username in api/security/userinfo/delete...
CVE-2021-28048
An overly permissive CORS policy in Devolutions Server before 2021.1 and Devolutions Server LTS before 2020.3.18 allows a remote attacker to leak cross-origin data via a crafted HTML page...
Devolutions Server SQL注入漏洞
Devolutions Server is an application from Devolutions Canada. It provides a full-featured shared account and password management solution. A SQL injection vulnerability exists in Devolutions Server versions prior to 2021.1and Devolutions Server LTS versions prior to 2020.3.18, which can be...
CVE-2021-28047
Cross-Site Scripting XSS in Administrative Reports in Devolutions Remote Desktop Manager before 2021.1 allows remote authenticated users to inject arbitrary web script or HTML via multiple input fields...
Devolutions Remote Desktop Manager 跨站脚本漏洞
Devolutions Remote Desktop Manager is a remote desktop management tool that centralizes all remote connections on a platform that is securely shared between users and across teams. A cross-site scripting vulnerability exists in the Administration Report in Devolutions Remote Desktop Manager...