Filtered by vendor Jetbrains Subscriptions
Total 424 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2019-18412 1 Jetbrains 1 Idetalk 2024-11-21 7.5 High
JetBrains IDETalk plugin before version 193.4099.10 allows XXE
CVE-2019-18369 1 Jetbrains 1 Youtrack 2024-11-21 5.3 Medium
In JetBrains YouTrack before 2019.2.55152, removing tags from the issues list without the corresponding permission was possible.
CVE-2019-18368 1 Jetbrains 1 Toolbox 2024-11-21 7.3 High
In JetBrains Toolbox App before 1.15.5666 for Windows, privilege escalation was possible.
CVE-2019-18367 1 Jetbrains 1 Teamcity 2024-11-21 5.3 Medium
In JetBrains TeamCity before 2019.1.2, a non-destructive operation could be performed by a user without the corresponding permissions.
CVE-2019-18366 1 Jetbrains 1 Teamcity 2024-11-21 5.3 Medium
In JetBrains TeamCity before 2019.1.2, secure values could be exposed to users with the "View build runtime parameters and data" permission.
CVE-2019-18365 1 Jetbrains 1 Teamcity 2024-11-21 4.3 Medium
In JetBrains TeamCity before 2019.1.4, reverse tabnabbing was possible on several pages.
CVE-2019-18364 1 Jetbrains 1 Teamcity 2024-11-21 9.8 Critical
In JetBrains TeamCity before 2019.1.4, insecure Java Deserialization could potentially allow remote code execution.
CVE-2019-18363 1 Jetbrains 1 Teamcity 2024-11-21 5.3 Medium
In JetBrains TeamCity before 2019.1.2, access could be gained to the history of builds of a deleted build configuration under some circumstances.
CVE-2019-18362 1 Jetbrains 1 Mps 2024-11-21 5.3 Medium
JetBrains MPS before 2019.2.2 exposed listening ports to the network.
CVE-2019-18361 1 Jetbrains 1 Intellij Idea 2024-11-21 5.3 Medium
JetBrains IntelliJ IDEA before 2019.2 allows local user privilege escalation, potentially leading to arbitrary code execution.
CVE-2019-18360 1 Jetbrains 1 Hub 2024-11-21 5.3 Medium
In JetBrains Hub versions earlier than 2019.1.11738, username enumeration was possible through password recovery.
CVE-2019-16407 1 Jetbrains 1 Resharper 2024-11-21 7.3 High
JetBrains ReSharper installers for versions before 2019.2 had a DLL Hijacking vulnerability.
CVE-2019-16171 1 Jetbrains 1 Youtrack 2024-11-21 6.1 Medium
In JetBrains YouTrack through 2019.2.56594, stored XSS was found on the issue page.
CVE-2019-15848 1 Jetbrains 1 Teamcity 2024-11-21 N/A
JetBrains TeamCity 2019.1 and 2019.1.1 allows cross-site scripting (XSS), potentially making it possible to send an arbitrary HTTP request to a TeamCity server under the name of the currently logged-in user.
CVE-2019-15042 1 Jetbrains 1 Teamcity 2024-11-21 7.5 High
An issue was discovered in JetBrains TeamCity 2018.2.4. It had no SSL certificate validation for some external https connections. This was fixed in TeamCity 2019.1.
CVE-2019-15041 1 Jetbrains 1 Youtrack 2024-11-21 6.1 Medium
JetBrains YouTrack versions before 2019.1.52545 allowed unbounded URL whitelisting because of Inclusion of Functionality from an Untrusted Control Sphere.
CVE-2019-15040 1 Jetbrains 1 Youtrack 2024-11-21 8.8 High
JetBrains YouTrack versions before 2019.1 had a CSRF vulnerability on the settings page.
CVE-2019-15039 1 Jetbrains 1 Teamcity 2024-11-21 9.8 Critical
An issue was discovered in JetBrains TeamCity 2018.2.4. It had a possible remote code execution issue. This was fixed in TeamCity 2019.1.
CVE-2019-15038 1 Jetbrains 1 Teamcity 2024-11-21 7.5 High
An issue was discovered in JetBrains TeamCity 2018.2.4. The TeamCity server was not using some security-related HTTP headers. The issue was fixed in TeamCity 2019.1.
CVE-2019-15037 1 Jetbrains 1 Teamcity 2024-11-21 6.1 Medium
An issue was discovered in JetBrains TeamCity 2018.2.4. It had several XSS vulnerabilities on the settings pages. The issues were fixed in TeamCity 2019.1.