Lucene search
JetbrainsIntellij Idea
5 matches found
CVE-2020-27622
In JetBrains IntelliJ IDEA before 2020.2, the built-in web server could expose information about the IDE version.
5.3CVSS5.2AI score0.00003EPSS
CVE-2022-46827
In JetBrains IntelliJ IDEA before 2022.3 an XXE attack leading to SSRF via requests to custom plugin repositories was possible.
5.5CVSS5.5AI score0.00001EPSS
CVE-2019-18361
JetBrains IntelliJ IDEA before 2019.2 allows local user privilege escalation, potentially leading to arbitrary code execution.
5.3CVSS5.8AI score0.00001EPSS
CVE-2019-14954
JetBrains IntelliJ IDEA before 2019.2 was resolving the markdown plantuml artifact download link via a cleartext http connection.
5.9CVSS5.7AI score0.00002EPSS
CVE-2021-25756
In JetBrains IntelliJ IDEA before 2020.2, HTTP links were used for several remote repositories instead of HTTPS.
5.3CVSS5.4AI score0.00003EPSS