CVE-2025-43014
In JetBrains Toolbox App before 2.6 the SSH plugin established connections without sufficient user confirmation
CVE-2025-43013
In JetBrains Toolbox App before 2.6 unencrypted credential transmission during SSH authentication was possible
CVE-2025-43012
In JetBrains Toolbox App before 2.6 command injection in SSH plugin was possible
CVE-2025-42921
In JetBrains Toolbox App before 2.6 host key verification was missing in SSH plugin