CVE-2020-27622
- EPSS 1.3%
- Veröffentlicht 16.11.2020 16:15:15
- Zuletzt bearbeitet 21.11.2024 05:21:31
In JetBrains IntelliJ IDEA before 2020.2, the built-in web server could expose information about the IDE version.
CVE-2020-11690
- EPSS 2.25%
- Veröffentlicht 22.04.2020 14:15:12
- Zuletzt bearbeitet 21.11.2024 04:58:24
In JetBrains IntelliJ IDEA before 2020.1, the license server could be resolved to an untrusted host in some cases.
CVE-2020-7914
- EPSS 1.89%
- Veröffentlicht 31.01.2020 13:15:10
- Zuletzt bearbeitet 21.11.2024 05:38:00
In JetBrains IntelliJ IDEA 2019.2, an XSLT debugger plugin misconfiguration allows arbitrary file read operations over the network. This issue was fixed in 2019.3.
CVE-2020-7905
- EPSS 1.16%
- Veröffentlicht 30.01.2020 18:15:11
- Zuletzt bearbeitet 21.11.2024 05:37:58
Ports listened to by JetBrains IntelliJ IDEA before 2019.3 were exposed to the network.
CVE-2020-7904
- EPSS 1.42%
- Veröffentlicht 30.01.2020 18:15:11
- Zuletzt bearbeitet 21.11.2024 05:37:58
In JetBrains IntelliJ IDEA before 2019.3, some Maven repositories were accessed via HTTP instead of HTTPS.
CVE-2019-18361
- EPSS 0.38%
- Veröffentlicht 31.10.2019 15:15:11
- Zuletzt bearbeitet 21.11.2024 04:33:07
JetBrains IntelliJ IDEA before 2019.2 allows local user privilege escalation, potentially leading to arbitrary code execution.
CVE-2019-14954
- EPSS 0.7%
- Veröffentlicht 01.10.2019 14:15:34
- Zuletzt bearbeitet 21.11.2024 04:27:45
JetBrains IntelliJ IDEA before 2019.2 was resolving the markdown plantuml artifact download link via a cleartext http connection.
CVE-2019-9873
- EPSS 1.56%
- Veröffentlicht 03.07.2019 19:15:13
- Zuletzt bearbeitet 21.11.2024 04:52:29
In several versions of JetBrains IntelliJ IDEA Ultimate, creating Task Servers configurations leads to saving a cleartext unencrypted record of the server credentials in the IDE configuration files. The issue has been fixed in the following versions:...
CVE-2019-9872
- EPSS 1.15%
- Veröffentlicht 03.07.2019 19:15:13
- Zuletzt bearbeitet 21.11.2024 04:52:28
In several versions of JetBrains IntelliJ IDEA Ultimate, creating run configurations for cloud application servers leads to saving a cleartext unencrypted record of the server credentials in the IDE configuration files. If the Settings Repository plu...
CVE-2019-9823
- EPSS 1.57%
- Veröffentlicht 03.07.2019 19:15:13
- Zuletzt bearbeitet 21.11.2024 04:52:22
In several JetBrains IntelliJ IDEA versions, creating remote run configurations of JavaEE application servers leads to saving a cleartext record of the server credentials in the IDE configuration files. The issue has been fixed in the following versi...