NotCVE - vendor:"Jetbrains" product:"Intellij Idea" version:" >= 2018.3

Page 3 of 49 results (0.013 seconds)

CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0

CVE-2022-37009

https://notcve.org/view.php?id=CVE-2022-37009

28 Jul 2022 — In JetBrains IntelliJ IDEA before 2022.2 local code execution via a Vagrant executable was possible En JetBrains IntelliJ IDEA versiones anteriores a 2022.2, era posible una ejecución de código local por medio de un ejecutable Vagrant • https://www.jetbrains.com/privacy-security/issues-fixed • CWE-94: Improper Control of Generation of Code ('Code Injection') •

CVSS: 7.7EPSS: 0%CPEs: 1EXPL: 0

CVE-2022-29819

https://notcve.org/view.php?id=CVE-2022-29819

28 Apr 2022 — In JetBrains IntelliJ IDEA before 2022.1 local code execution via links in Quick Documentation was possible En JetBrains IntelliJ IDEA versiones anteriores a 2022.1, era posible una ejecución de código local por medio de enlaces en Quick Documentation • https://www.jetbrains.com/privacy-security/issues-fixed • CWE-94: Improper Control of Generation of Code ('Code Injection') •

CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0

CVE-2022-29818

https://notcve.org/view.php?id=CVE-2022-29818

28 Apr 2022 — In JetBrains IntelliJ IDEA before 2022.1 origin checks in the internal web server were flawed En JetBrains IntelliJ IDEA versiones anteriores a 2022.1, las comprobaciones de origen en el servidor web interno eran defectuosas • https://www.jetbrains.com/privacy-security/issues-fixed • CWE-346: Origin Validation Error •

CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0

CVE-2022-29817

https://notcve.org/view.php?id=CVE-2022-29817

28 Apr 2022 — In JetBrains IntelliJ IDEA before 2022.1 reflected XSS via error messages in internal web server was possible En JetBrains IntelliJ IDEA versiones anteriores a 2022.1, era posible un ataque de tipo XSS reflejado por medio de mensajes de error en el servidor web interno • https://www.jetbrains.com/privacy-security/issues-fixed • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 3.2EPSS: 0%CPEs: 1EXPL: 0

CVE-2022-29816

https://notcve.org/view.php?id=CVE-2022-29816

28 Apr 2022 — In JetBrains IntelliJ IDEA before 2022.1 HTML injection into IDE messages was possible En JetBrains IntelliJ IDEA versiones anteriores a 2022.1, era posible una inyección de HTML en los mensajes del IDE • https://www.jetbrains.com/privacy-security/issues-fixed • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 6.9EPSS: 0%CPEs: 1EXPL: 0

CVE-2022-29815

https://notcve.org/view.php?id=CVE-2022-29815

28 Apr 2022 — In JetBrains IntelliJ IDEA before 2022.1 local code execution via workspace settings was possible En JetBrains IntelliJ IDEA versiones anteriores a 2022.1, era posible una ejecución de código local por medio de la configuración del workspace • https://www.jetbrains.com/privacy-security/issues-fixed • CWE-94: Improper Control of Generation of Code ('Code Injection') •

CVSS: 7.7EPSS: 0%CPEs: 1EXPL: 0

CVE-2022-29814

https://notcve.org/view.php?id=CVE-2022-29814

28 Apr 2022 — In JetBrains IntelliJ IDEA before 2022.1 local code execution via HTML descriptions in custom JSON schemas was possible En JetBrains IntelliJ IDEA versiones anteriores a 2022.1, era posible una ejecución de código local por medio de descripciones HTML en esquemas JSON personalizados • https://www.jetbrains.com/privacy-security/issues-fixed • CWE-94: Improper Control of Generation of Code ('Code Injection') •

CVSS: 6.9EPSS: 0%CPEs: 1EXPL: 0

CVE-2022-29813

https://notcve.org/view.php?id=CVE-2022-29813

28 Apr 2022 — In JetBrains IntelliJ IDEA before 2022.1 local code execution via custom Pandoc path was possible En JetBrains IntelliJ IDEA versiones anteriores a 2022.1, era posible una ejecución de código local por medio de la ruta personalizada de Pandoc • https://www.jetbrains.com/privacy-security/issues-fixed • CWE-94: Improper Control of Generation of Code ('Code Injection') •

CVSS: 2.3EPSS: 0%CPEs: 1EXPL: 0

CVE-2022-29812

https://notcve.org/view.php?id=CVE-2022-29812

28 Apr 2022 — In JetBrains IntelliJ IDEA before 2022.1 notification mechanisms about using Unicode directionality formatting characters were insufficient En JetBrains IntelliJ IDEA versiones anteriores a 2022.1, los mecanismos de notificación sobre el uso de caracteres de formato de direccionalidad Unicode eran insuficientes • https://www.jetbrains.com/privacy-security/issues-fixed • CWE-176: Improper Handling of Unicode Encoding •

CVSS: 8.4EPSS: 0%CPEs: 1EXPL: 0

CVE-2022-28651

https://notcve.org/view.php?id=CVE-2022-28651

05 Apr 2022 — In JetBrains IntelliJ IDEA before 2021.3.3 it was possible to get passwords from protected fields En JetBrains IntelliJ IDEA versiones anteriores a 2021.3.3, era posible conseguir contraseñas de campos protegidos • https://www.jetbrains.com/privacy-security/issues-fixed • CWE-497: Exposure of Sensitive System Information to an Unauthorized Control Sphere CWE-522: Insufficiently Protected Credentials •

1 2 3 4 5