CVSS: 2.5EPSS: 0%CPEs: 1EXPL: 1CVE-2021-25755
https://notcve.org/view.php?id=CVE-2021-25755
In JetBrains Code With Me before 2020.3, an attacker on the local network, knowing a session ID, could get access to the encrypted traffic. En JetBrains Code With Me versiones anteriores a 2020.3, un atacante en la red local, conociendo un ID de sesión, podría conseguir acceso al tráfico cifrado • https://blog.jetbrains.com https://blog.jetbrains.com/blog/2021/02/03/jetbrains-security-bulletin-q4-2020 https://jay-from-future.github.io/cve/2021/04/02/code-with-me-cve.html •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2020-27623
https://notcve.org/view.php?id=CVE-2020-27623
JetBrains IdeaVim before version 0.58 might have caused an information leak in limited circumstances. JetBrains IdeaVim anterior a versión 0.58, podría haber causado un filtrado de información en circunstancias limitadas • https://blog.jetbrains.com https://blog.jetbrains.com/2020/11/16/jetbrains-security-bulletin-q3-2020 •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2020-27622
https://notcve.org/view.php?id=CVE-2020-27622
In JetBrains IntelliJ IDEA before 2020.2, the built-in web server could expose information about the IDE version. En JetBrains IntelliJ IDEA versiones anteriores a 2020.2, el servidor web incorporado podría exponer información sobre la versión IDE • https://blog.jetbrains.com https://blog.jetbrains.com/2020/11/16/jetbrains-security-bulletin-q3-2020 •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2020-26129
https://notcve.org/view.php?id=CVE-2020-26129
In JetBrains Ktor before 1.4.1, HTTP request smuggling was possible. En JetBrains Ktor versiones anteriores a 1.4.1, era posible el tráfico no autorizado de peticiones HTTP • https://blog.jetbrains.com https://blog.jetbrains.com/2020/11/16/jetbrains-security-bulletin-q3-2020 • CWE-444: Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2020-27627
https://notcve.org/view.php?id=CVE-2020-27627
JetBrains TeamCity before 2020.1.2 was vulnerable to URL injection. JetBrains TeamCity versiones anteriores a 2020.1.2, era vulnerable a una inyección de URL • https://blog.jetbrains.com https://blog.jetbrains.com/2020/11/16/jetbrains-security-bulletin-q3-2020 • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •