Search Results | AttackerKB

456 Total Results

Displaying 151-160 of 456

Attacker Value

Unknown

CVE-2023-34218

Disclosure Date: May 31, 2023 (last updated February 25, 2025)

In JetBrains TeamCity before 2023.05 bypass of permission checks allowing to perform admin actions was possible

Attacker Value

Unknown

CVE-2022-48481

Disclosure Date: April 28, 2023 (last updated February 24, 2025)

In JetBrains Toolbox App before 1.28 a DYLIB injection on macOS was possible

Attack Vector: Local Privileges: Low User Interaction: None

Attacker Value

Unknown

CVE-2022-48477

Disclosure Date: April 24, 2023 (last updated February 24, 2025)

In JetBrains Hub before 2023.1.15725 SSRF protection in Auth Module integration was missing

Attack Vector: Network Privileges: None User Interaction: None

Attacker Value

Unknown

CVE-2022-48476

Disclosure Date: April 24, 2023 (last updated February 24, 2025)

In JetBrains Ktor before 2.3.0 path traversal in the `resolveResource` method was possible

Attack Vector: Network Privileges: None User Interaction: None

Attacker Value

Unknown

CVE-2022-48435

Disclosure Date: April 04, 2023 (last updated February 24, 2025)

In JetBrains PhpStorm before 2023.1 source code could be logged in the local idea.log file

Attack Vector: Local Privileges: Low User Interaction: None

Attacker Value

Unknown

CVE-2022-48433

Disclosure Date: March 29, 2023 (last updated February 24, 2025)

In JetBrains IntelliJ IDEA before 2023.1 the NTLM hash could leak through an API method used in the IntelliJ IDEA built-in web server.

Attack Vector: Network Privileges: None User Interaction: None

Attacker Value

Unknown

CVE-2022-48432

Disclosure Date: March 29, 2023 (last updated February 24, 2025)

In JetBrains IntelliJ IDEA before 2023.1 the bundled version of Chromium wasn't sandboxed.

Attack Vector: Local Privileges: Low User Interaction: None

Attacker Value

Unknown

CVE-2022-48431

Disclosure Date: March 29, 2023 (last updated February 24, 2025)

In JetBrains IntelliJ IDEA before 2023.1 in some cases, Gradle and Maven projects could be imported without the “Trust Project” confirmation.

Attack Vector: Local Privileges: Low User Interaction: None

Attacker Value

Unknown

CVE-2022-48430

Disclosure Date: March 29, 2023 (last updated February 24, 2025)

In JetBrains IntelliJ IDEA before 2023.1 file content could be disclosed via an external stylesheet path in Markdown preview.

Attack Vector: Network Privileges: None User Interaction: None

Attacker Value

Unknown

CVE-2022-48428

Disclosure Date: March 27, 2023 (last updated February 24, 2025)

In JetBrains TeamCity before 2022.10.3 stored XSS on the SSH keys page was possible

Attack Vector: Network Privileges: Low User Interaction: Required

456 Total Results

Displaying 151-160 of 456

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Quick Cookie Notification