Vulnerabilidades en JetBrains
325 resultadosCVE-2025-64684MEDIUMIn JetBrains YouTrack before 2025.3.104432 information disclosure was possible via the feedback formEPSS 0.3%CVE-2024-43810MEDIUMIn JetBrains TeamCity before 2024.07.1 reflected XSS was possible in the AWS Core pluginEPSS 0.3%CVE-2024-41825MEDIUMIn JetBrains TeamCity before 2024.07 stored XSS was possible on the Code Inspection tabEPSS 0.3%CVE-2025-54531HIGHIn JetBrains TeamCity before 2025.07 path traversal was possible via plugin unpacking on WindowsEPSS 0.3%CVE-2024-56348MEDIUMIn JetBrains TeamCity before 2024.12 improper access control allowed viewing details of unauthorized agentsEPSS 0.3%CVE-2025-24456MEDIUMIn JetBrains Hub before 2024.3.55417 privilege escalation was possible via LDAP authentication mappingEPSS 0.3%CVE-2024-35299MEDIUMIn JetBrains YouTrack before 2024.1.29548 the SMTPS protocol communication lacked proper certificate hostname validationEPSS 0.3%CVE-2024-56350MEDIUMIn JetBrains TeamCity before 2024.12 build credentials allowed unauthorized viewing of projectsEPSS 0.3%CVE-2024-24940LOWIn JetBrains IntelliJ IDEA before 2023.3.3 path traversal was possible when unpacking archivesEPSS 0.3%CVE-2024-56349MEDIUMIn JetBrains TeamCity before 2024.12 improper access control allowed unauthorized users to modify build logsEPSS 0.3%CVE-2024-35302MEDIUMIn JetBrains TeamCity before 2023.11 stored XSS during restore from backup was possibleEPSS 0.3%CVE-2022-46828MEDIUMIn JetBrains IntelliJ IDEA before 2022.3 a DYLIB injection on macOS was possible.EPSS 0.3%CVE-2024-36367MEDIUMIn JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5 stored XSS via third-party reports was possibleEPSS 0.3%CVE-2024-36372MEDIUMIn JetBrains TeamCity before 2023.05.6 reflected XSS on the subscriptions page was possibleEPSS 0.3%CVE-2024-36374MEDIUMIn JetBrains TeamCity before 2024.03.2 stored XSS via build step settings was possibleEPSS 0.3%CVE-2024-36363MEDIUMIn JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5 several Stored XSS in code inspection reports were possibleEPSS 0.3%CVE-2024-36368MEDIUMIn JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5 reflected XSS via OAuth provider configuration was possibleEPSS 0.3%CVE-2024-36369MEDIUMIn JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5 stored XSS via issue tracker integration was possibleEPSS 0.3%CVE-2024-36373MEDIUMIn JetBrains TeamCity before 2024.03.2 several stored XSS in untrusted builds settings were possibleEPSS 0.3%CVE-2024-36370MEDIUMIn JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5 stored XSS via OAuth connection settings was possibleEPSS 0.3%