CVE-2021-45977

CVE-2021-45977 affects JetBrains IDEs used as Remote Development backends where the affected products bound to the 0.0.0.0 address. The vulnerability description from connected sources notes exposure of the backend service due to binding to an all interfaces address. Fixed versions are provided: ...

CVE-2021-25764

PhpStorm (JetBrains) before 2020.3 is affected: the issue lets source code be written into debug logs (“Source code could be added to debug logs”). The vulnerability affects PhpStorm’s logging path and can lead to information disclosure via logs. The issue is tracked as CVE-2021-25764. Remediatio...

CVE-2024-37051

CVE-2024-37051 describes insufficient protection of GitHub access tokens in multiple JetBrains IDEs, allowing potential exposure of tokens to third-party sites. Affected products/versions include IntelliJ IDEA, Aqua, CLion, DataGrip, DataSpell, GoLand, MPS, PhpStorm, PyCharm, Rider, RubyMine, Rus...

CVE-2022-48435

CVE-2022-48435 affects JetBrains PhpStorm prior to 2023.1. The vulnerability allows source code to be logged in the local idea.log file due to how PhpStorm handles logging. Reported across multiple sources (NVD/Red Hat/CNNVD and related notices). Impact is framed as information disclosure within ...