JetBrains Toolbox before 1.15.5605 was resolving an internal URL via a cleartext http connection.
5.9CVSS
5.7AI Score
0.002EPSS
In JetBrains Toolbox App before 1.15.5666 for Windows, privilege escalation was possible.
7.3CVSS
7.4AI Score
0.001EPSS
In JetBrains ToolBox version 1.17 before 1.17.6856, the set of signature verifications omitted the jetbrains-toolbox.exe file.
7.5CVSS
7.5AI Score
0.001EPSS
JetBrains ToolBox before version 1.18 is vulnerable to a Denial of Service attack via a browser protocol handler.
7.5CVSS
7.4AI Score
0.001EPSS
JetBrains ToolBox before version 1.18 is vulnerable to Remote Code Execution via a browser protocol handler.
9.8CVSS
9.5AI Score
0.036EPSS
7.8CVSS
7.6AI Score
0.0004EPSS
In JetBrains Toolbox App before 2.2 a DoS attack was possible via a malicious SVG image
5.5CVSS
5.5AI Score
0.0004EPSS