CVE-2022-46826
- EPSS 0%
- Published 08.12.2022 18:15:10
- Last modified 21.11.2024 07:31:07
In JetBrains IntelliJ IDEA before 2022.3 the built-in web server allowed an arbitrary file to be read by exploiting a path traversal vulnerability.
CVE-2022-46825
- EPSS 0%
- Published 08.12.2022 18:15:09
- Last modified 21.11.2024 07:31:07
In JetBrains IntelliJ IDEA before 2022.3 the built-in web server leaked information about open projects.
CVE-2022-46824
- EPSS 0%
- Published 08.12.2022 18:15:09
- Last modified 21.11.2024 07:31:07
In JetBrains IntelliJ IDEA before 2022.2.4 a buffer overflow in the fsnotifier daemon on macOS was possible.
CVE-2022-40978
- EPSS 0%
- Published 19.09.2022 16:15:12
- Last modified 21.11.2024 07:22:20
The installer of JetBrains IntelliJ IDEA before 2022.2.2 was vulnerable to EXE search order hijacking
CVE-2022-37010
- EPSS 0%
- Published 28.07.2022 11:15:07
- Last modified 21.11.2024 07:14:16
In JetBrains IntelliJ IDEA before 2022.2 email address validation in the "Git User Name Is Not Defined" dialog was missed
CVE-2022-37009
- EPSS 0%
- Published 28.07.2022 11:15:07
- Last modified 21.11.2024 07:14:16
In JetBrains IntelliJ IDEA before 2022.2 local code execution via a Vagrant executable was possible
CVE-2022-29818
- EPSS 0%
- Published 28.04.2022 10:15:08
- Last modified 21.11.2024 06:59:44
In JetBrains IntelliJ IDEA before 2022.1 origin checks in the internal web server were flawed
CVE-2022-29819
- EPSS 0%
- Published 28.04.2022 10:15:08
- Last modified 21.11.2024 06:59:44
In JetBrains IntelliJ IDEA before 2022.1 local code execution via links in Quick Documentation was possible
CVE-2022-29817
- EPSS 0.01%
- Published 28.04.2022 10:15:08
- Last modified 21.11.2024 06:59:44
In JetBrains IntelliJ IDEA before 2022.1 reflected XSS via error messages in internal web server was possible
CVE-2022-29816
- EPSS 0%
- Published 28.04.2022 10:15:08
- Last modified 21.11.2024 06:59:44
In JetBrains IntelliJ IDEA before 2022.1 HTML injection into IDE messages was possible