28 matches found
CVE-2024-41829
In JetBrains TeamCity before 2024.07 an OAuth code for JetBrains Space could be stolen via Space Application connection...
The configuration of the JetBrains Space module “Project Settings” exposes vulnerabilities. This vulnerability relates to the connections in the system for continuous integration and delivery of applications (CI/CD). The JetBrains TeamCity allows attackers to gain unauthorized access to protected information.
The vulnerability of the JetBrains Space module’s Project Settings | Connections system for continuous integration and delivery of applications is related to deficiencies in authentication procedures. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain...
CVE-2024-41829
In JetBrains TeamCity before 2024.07 an OAuth code for JetBrains Space could be stolen via Space Application connection...
CVE-2024-41829
CVE-2024-41829 concerns JetBrains TeamCity prior to 2024.07. The vulnerability arises from the Space integration (Space module Space Application connection), where an OAuth code for JetBrains Space could be stolen due to weaknesses in the authentication flow. Affected software: JetBrains TeamCity
CVE-2024-41829
In JetBrains TeamCity before 2024.07 an OAuth code for JetBrains Space could be stolen via Space Application connection...
CVE-2024-41829
In JetBrains TeamCity before 2024.07 an OAuth code for JetBrains Space could be stolen via Space Application connection...
JetBrains IntelliJ IDEA < 2023.3.3 Multiple Vulnerabilities (macOS)
The version of JetBrains IntelliJ IDEA installed on the remote macOS host is prior to 2023.3.3 It is, therefore, affected by multiple vulnerabilities: - Path traversal was possible when unpacking archives CVE-2024-24940 - A plugin for JetBrains Space was able to send an authentication token to an...
CVE-2024-24941
In JetBrains IntelliJ IDEA before 2023.3.3 a plugin for JetBrains Space was able to send an authentication token to an inappropriate URL...
CVE-2024-24941
In JetBrains IntelliJ IDEA before 2023.3.3 a plugin for JetBrains Space was able to send an authentication token to an inappropriate URL...
Authentication flaw
In JetBrains IntelliJ IDEA before 2023.3.3 a plugin for JetBrains Space was able to send an authentication token to an inappropriate URL...
CVE-2024-24941
In JetBrains IntelliJ IDEA before 2023.3.3 a plugin for JetBrains Space was able to send an authentication token to an inappropriate URL...
CVE-2024-24941
In JetBrains IntelliJ IDEA before 2023.3.3 a plugin for JetBrains Space was able to send an authentication token to an inappropriate URL...
PT-2024-1694 · Jetbrains · Jetbrains Intellij Idea
Name of the Vulnerable Software and Affected Versions: JetBrains IntelliJ IDEA versions prior to 2023.3.3 Description: The issue exists due to insufficient input validation in the authentication token handler component of the integrated development environment. This could allow a remote attacker ...
JetBrains Space License Issue Vulnerability
JetBrains Space is a team collaboration solution from the Czech company JetBrains. The product supports features such as online chat, online meetings, code review and package repository. A security vulnerability exists in JetBrains Space version 2020-04-22 and earlier that stems from insecure...
JetBrains Space Code Issue Vulnerability
JetBrains Space is a team collaboration solution from the Czech company JetBrains. The product supports features such as online chat, online meetings, code review and package repository. A security vulnerability exists in JetBrains Space version 2020-04-22 and earlier, which can be exploited by...
JetBrains Space Chats Cross-Site Scripting Vulnerability
JetBrains Space is a team collaboration solution from the Czech company JetBrains. The product supports online chat, online meetings, code review and package repository, etc. Chats is one of the online chat components. A cross-site scripting vulnerability exists in Chats in JetBrains Space versio...
CVE-2020-11795
In JetBrains Space through 2020-04-22, the session timeout period was configured improperly...
CVE-2020-11795
In JetBrains Space through 2020-04-22, the session timeout period was configured improperly...
CVE-2020-11796
In JetBrains Space through 2020-04-22, the password authentication implementation was insecure...
CVE-2020-11796
In JetBrains Space through 2020-04-22, the password authentication implementation was insecure...