Intellij Idea Security Vulnerabilities and Issues — Intellij Idea CVE List

Lucene search

JetbrainsIntellij Idea

8 matches found

CVE•added 2022/02/25 3:15 p.m.•768 views

CVE-2021-45977

JetBrains IntelliJ IDEA 2021.3.1 Preview, IntelliJ IDEA 2021.3.1 RC, PyCharm Professional 2021.3.1 RC, GoLand 2021.3.1, PhpStorm 2021.3.1 Preview, PhpStorm 2021.3.1 RC, RubyMine 2021.3.1 Preview, RubyMine 2021.3.1 RC, CLion 2021.3.1, WebStorm 2021.3.1 Preview, and WebStorm 2021.3.1 RC (used as Remo...

9.8CVSS9.4AI score0.00005EPSS

CVE•added 2019/07/03 7:15 p.m.•235 views

CVE-2019-9186

In several JetBrains IntelliJ IDEA versions, a Spring Boot run configuration with the default setting allowed remote attackers to execute code when the configuration is running, because a JMX server listens on all interfaces (instead of listening on only the localhost interface). This issue has bee...

9.8CVSS9.4AI score0.00012EPSS

CVE•added 2019/07/03 7:15 p.m.•224 views

CVE-2019-9823

In several JetBrains IntelliJ IDEA versions, creating remote run configurations of JavaEE application servers leads to saving a cleartext record of the server credentials in the IDE configuration files. The issue has been fixed in the following versions: 2018.3.5, 2018.2.8, 2018.1.8.

9.8CVSS9.3AI score0.00001EPSS

CVE•added 2019/07/03 7:15 p.m.•165 views

CVE-2019-9873

In several versions of JetBrains IntelliJ IDEA Ultimate, creating Task Servers configurations leads to saving a cleartext unencrypted record of the server credentials in the IDE configuration files. The issue has been fixed in the following versions: 2019.1, 2018.3.5, 2018.2.8, and 2018.1.8.

9.8CVSS9.3AI score0.00001EPSS

CVE•added 2019/07/03 7:15 p.m.•138 views

CVE-2019-10104

In several JetBrains IntelliJ IDEA Ultimate versions, an Application Server run configuration (for Tomcat, Jetty, Resin, or CloudBees) with the default setting allowed a remote attacker to execute code when the configuration is running, because a JMX server listened on all interfaces instead of loc...

9.8CVSS9.4AI score0.00021EPSS

CVE•added 2024/06/10 4:15 p.m.•118 views

CVE-2024-37051

GitHub access token could be exposed to third-party sites in JetBrains IDEs after version 2023.1 and less than: IntelliJ IDEA 2023.1.7, 2023.2.7, 2023.3.7, 2024.1.3, 2024.2 EAP3; Aqua 2024.1.2; CLion 2023.1.7, 2023.2.4, 2023.3.5, 2024.1.3, 2024.2 EAP2; DataGrip 2023.1.3, 2023.2.4, 2023.3.5, 2024.1....

9.3CVSS6.9AI score0.05214EPSS

CVE•added 2023/12/21 10:15 a.m.•73 views

CVE-2023-51655

In JetBrains IntelliJ IDEA before 2023.3.2 code execution was possible in Untrusted Project mode via a malicious plugin repository specified in the project configuration

9.8CVSS9.5AI score0.00008EPSS

CVE•added 2020/04/22 2:15 p.m.•33 views

CVE-2020-11690

In JetBrains IntelliJ IDEA before 2020.1, the license server could be resolved to an untrusted host in some cases.

9.8CVSS9.2AI score0.00005EPSS