Jetbrains | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Kategori: Jetbrains - CVE listesi
VENDOR 90 kayıt
Medium CVSS: 4.3

CVE-2025-47854

In JetBrains TeamCity before 2025.03.2 open redirect was possible on editing VCS Root page
Medium CVSS: 4.8

CVE-2025-47853

In JetBrains TeamCity before 2025.03.2 stored XSS via Jira integration was possible
Medium CVSS: 4.8

CVE-2025-47852

In JetBrains TeamCity before 2025.03.2 stored XSS via YouTrack integration was possible
Medium CVSS: 4.8

CVE-2025-47851

In JetBrains TeamCity before 2025.03.2 stored XSS via GitHub Checks Webhook was possible
Medium CVSS: 4.3

CVE-2025-47850

In JetBrains YouTrack before 2025.1.74704 restricted attachments could become visible after issue cloning
Low CVSS: 3.5

CVE-2025-46618

In JetBrains TeamCity before 2025.03.1 stored XSS was possible on Data Directory tab
Medium CVSS: 4.9

CVE-2025-46433

In JetBrains TeamCity before 2025.03.1 improper path validation in loggingPreset parameter was possible
Medium CVSS: 4.3

CVE-2025-46432

In JetBrains TeamCity before 2025.03.1 base64-encoded credentials could be exposed in build logs
Medium CVSS: 5.4

CVE-2025-43016

In JetBrains Rider before 2025.1.2 custom archive unpacker allowed arbitrary file overwrite during remote debug session
High CVSS: 8.3

CVE-2025-43015

In JetBrains RubyMine before 2025.1 remote Interpreter overwrote ports to listen on all interfaces
Medium CVSS: 6.1

CVE-2025-43014

In JetBrains Toolbox App before 2.6 the SSH plugin established connections without sufficient user confirmation
Medium CVSS: 6.9

CVE-2025-43013

In JetBrains Toolbox App before 2.6 unencrypted credential transmission during SSH authentication was possible
High CVSS: 8.3

CVE-2025-43012

In JetBrains Toolbox App before 2.6 command injection in SSH plugin was possible
Medium CVSS: 4.2

CVE-2025-42921

In JetBrains Toolbox App before 2.6 host key verification was missing in SSH plugin
Low CVSS: 3.3

CVE-2025-32054

In JetBrains IntelliJ IDEA before 2024.3, 2024.2.4 source code could be logged in the idea.log file
Low CVSS: 2.7

CVE-2025-31141

In JetBrains TeamCity before 2025.03 exception could lead to credential leakage on Cloud Profiles page
Medium CVSS: 4.6

CVE-2025-31140

In JetBrains TeamCity before 2025.03 stored XSS was possible on Cloud Profiles page
Medium CVSS: 4.3

CVE-2025-31139

In JetBrains TeamCity before 2025.03 base64 encoded password could be exposed in build log
Medium CVSS: 4.1

CVE-2025-29932

In JetBrains GoLand before 2025.1 an XXE during debugging was possible
Medium CVSS: 5.3

CVE-2025-29904

In JetBrains Ktor before 3.1.1 an HTTP Request Smuggling was possible