Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

87 matches found

NVD
NVDadded 2025/04/17 4:15 p.m.11 views

CVE-2025-43012

In JetBrains Toolbox App before 2.6 command injection in SSH plugin was possible...

9.8CVSS0.0001EPSS
Exploits0References1
CVE
CVEadded 2025/04/17 3:56 p.m.63 views

CVE-2025-43012

JetBrains Toolbox App prior to version 2.6 is affected by a vulnerability in the SSH plugin that enables command injection due to improper input handling. Reported as CVE-2025-43012, the issue can permit arbitrary code execution with network access and no user interaction required, as reflected b...

9.8CVSS7.5AI score0.0001EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2025/04/17 3:56 p.m.9 views

CVE-2025-43014

In JetBrains Toolbox App before 2.6 the SSH plugin established connections without sufficient user confirmation...

6.1CVSS0.00091EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/04/17 3:56 p.m.7 views

CVE-2025-43012

In JetBrains Toolbox App before 2.6 command injection in SSH plugin was possible...

8.3CVSS7.5AI score0.0001EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/04/17 3:56 p.m.10 views

CVE-2025-43014

In JetBrains Toolbox App before 2.6 the SSH plugin established connections without sufficient user confirmation...

6.1CVSS6.3AI score0.00091EPSS
Exploits0References1
CVE
CVEadded 2025/04/17 3:56 p.m.64 views

CVE-2025-43014

CVE-2025-43014 affects JetBrains Toolbox App prior to 2.6, specifically the SSH plugin, which established connections without sufficient user confirmation. The available connected documents confirm this vulnerability exists in versions before 2.6 and describe the issue as a lack of proper user va...

6.5CVSS7AI score0.00091EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2025/04/17 3:56 p.m.9 views

CVE-2025-43012

In JetBrains Toolbox App before 2.6 command injection in SSH plugin was possible...

8.3CVSS0.0001EPSS
Exploits0References1
CVE
CVEadded 2025/04/17 3:56 p.m.54 views

CVE-2025-42921

JetBrains Toolbox App has a CVE-2025-42921 vulnerability affecting versions prior to 2.6, caused by missing host key verification in the SSH plugin. Multiple connected sources corroborate that the SSH plugin’s host key verification is absent, enabling potential subversion of SSH authenticity. Aff...

6.5CVSS7AI score0.00008EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2025/04/17 3:56 p.m.9 views

CVE-2025-42921

In JetBrains Toolbox App before 2.6 host key verification was missing in SSH plugin...

4.2CVSS4.6AI score0.00008EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/04/17 3:56 p.m.9 views

CVE-2025-42921

In JetBrains Toolbox App before 2.6 host key verification was missing in SSH plugin...

4.2CVSS0.00008EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/04/17 12:0 a.m.2 views

PT-2025-17197 · Jetbrains · Jetbrains Toolbox App

Name of the Vulnerable Software and Affected Versions: JetBrains Toolbox App versions prior to 2.6 Description: The issue concerns missing host key verification in the SSH plugin. Recommendations: For versions prior to 2.6, update to version 2.6 or later to resolve the issue...

6.5CVSS6.3AI score0.00008EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2025/04/17 12:0 a.m.3 views

PT-2025-17198 · Jetbrains · Ssh Plugin +1

Name of the Vulnerable Software and Affected Versions: JetBrains Toolbox App versions prior to 2.6 Description: The issue concerns command injection in the SSH plugin. Recommendations: For versions prior to 2.6, update to version 2.6 or later to resolve the issue...

8.3CVSS6.9AI score0.0001EPSS
Exploits0References7
CNNVD
CNNVDadded 2025/04/17 12:0 a.m.1 views

JetBrains Toolbox App 安全漏洞

JetBrains Toolbox App is an application for managing JetBrains development tools, providing the ability to install, update and manage multiple JetBrains tools. A security vulnerability exists in JetBrains Toolbox App that stems from the lack of authentication of the host key in the SSH plugin. An...

6.5CVSS6.7AI score0.00008EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/04/17 12:0 a.m.2 views

PT-2025-17200 · Jetbrains · Jetbrains Toolbox App

Name of the Vulnerable Software and Affected Versions: JetBrains Toolbox App versions prior to 2.6 Description: The issue concerns the SSH plugin in the JetBrains Toolbox App, which established connections without sufficient user confirmation. Recommendations: For versions prior to 2.6, update to...

6.5CVSS6.4AI score0.00091EPSS
Exploits0References6
Rockylinux
Rockylinuxadded 2025/02/13 8:34 p.m.6 views

sos bug fix and enhancement update

An update is available for sos. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The sos package contains a set of utilities that gather information from system...

7.2AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2022/06/16 12:0 a.m.67 views

Jenkins plugins Multiple Vulnerabilities (2022-05-17)

According to their self-reported version numbers, the version of Jenkins plugins running on the remote web server are affected by multiple vulnerabilities: - Jenkins Pipeline: Groovy Plugin 2689.v434009a31bf1 and earlier allows loading any Groovy source files on the classpath of Jenkins and Jenki...

8.8CVSS7.2AI score0.00544EPSS
Exploits0References29
CNVD
CNVDadded 2022/05/19 12:0 a.m.121 views

Jenkins SSH Plugin Permissions and Access Control Issues Vulnerability

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is an application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is an application.The Jenkins SSH Plugin 2.6.1 and earlier...

4.3CVSS1.7AI score0.0003EPSS
Exploits0References1
CNVD
CNVDadded 2022/05/19 12:0 a.m.177 views

Jenkins SSH Plugin Access Control Error Vulnerability

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is an application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is an application.Jenkins SSH Plugin 2.6.1 and earlier...

6.5CVSS2.2AI score0.0007EPSS
Exploits0References1
CNVD
CNVDadded 2022/05/19 12:0 a.m.124 views

Jenkins SSH Plugin Cross-Site Request Forgery Vulnerability

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is an application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is an application.Jenkins SSH Plugin 2.6.1 and earlier...

8.8CVSS3.1AI score0.00069EPSS
Exploits0References1
Github Security Blog
Github Security Blogadded 2022/05/18 12:0 a.m.33 views

Cross Site Request Forgery in Jenkins SSH Plugin

A cross-site request forgery CSRF vulnerability in Jenkins SSH Plugin 2.6.1 and earlier allows attackers to connect to an attacker-specified SSH server using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

8.8CVSS8.3AI score0.00069EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder