Known Vulnerabilities for Intellij Idea by Jetbrains
Listed below are 10 of the newest known vulnerabilities associated with "Intellij Idea" by "Jetbrains".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-49383 json | In JetBrains IntelliJ IDEA before 2026.1 xXE in the UI Designer form parser was possible | Not Provided | 2026-05-29 | 2026-05-29 |
| CVE-2026-49382 json | In JetBrains IntelliJ IDEA before 2026.1 code execution was possible via template injection in the Copyright plugin | Not Provided | 2026-05-29 | 2026-05-29 |
| CVE-2026-49367 json | In JetBrains IntelliJ IDEA before 2026.1.1 command execution was possible via the guest user account | Not Provided | 2026-05-29 | 2026-05-30 |
| CVE-2026-49366 json | In JetBrains IntelliJ IDEA before 2026.1.1 command injection was possible via filename completion | Not Provided | 2026-05-29 | 2026-05-30 |
| CVE-2026-41882 json | In JetBrains IntelliJ IDEA before 2024.3.7.1, 2025.1.7.1, 2025.2.6.2, 2025.3.4.1, 2026.1.1 reading arbitrary local files ... | Not Provided | 2026-04-30 | 2026-04-30 |
| CVE-2023-39261 json | In JetBrains IntelliJ IDEA before 2023.2 plugin for Space was requesting excessive permissions | 7.8 - HIGH | 2023-07-26 | 2023-08-02 |
| CVE-2023-38069 json | In JetBrains IntelliJ IDEA before 2023.1.4 license dialog could be suppressed in certain cases | 3.3 - LOW | 2023-07-12 | 2023-07-20 |
| CVE-2022-48433 json | In JetBrains IntelliJ IDEA before 2023.1 the NTLM hash could leak through an API method used in the IntelliJ IDEA built-in we... | 7.5 - HIGH | 2023-03-29 | 2023-04-01 |
| CVE-2022-48432 json | In JetBrains IntelliJ IDEA before 2023.1 the bundled version of Chromium wasn't sandboxed. | 8.8 - HIGH | 2023-03-29 | 2023-04-01 |
| CVE-2022-48431 json | In JetBrains IntelliJ IDEA before 2023.1 in some cases, Gradle and Maven projects could be imported without the “Trust Proj... | 7.8 - HIGH | 2023-03-29 | 2023-04-01 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Jetbrains | Intellij Idea | 9.0.4 | |||
| Application | Jetbrains | Intellij Idea | 9.0.3 | |||
| Application | Jetbrains | Intellij Idea | 2020.3 | |||
| Application | Jetbrains | Intellij Idea | 2020.2 | |||
| Application | Jetbrains | Intellij Idea | 2020.1 | |||
| Application | Jetbrains | Intellij Idea | 2019.3.4 | |||
| Application | Jetbrains | Intellij Idea | 2019.3.3 | |||
| Application | Jetbrains | Intellij Idea | 2019.3.0 | |||
| Application | Jetbrains | Intellij Idea | 2019.3 | |||
| Application | Jetbrains | Intellij Idea | 2019.2.4 | |||
| Application | Jetbrains | Intellij Idea | 2019.2.3 | |||
| Application | Jetbrains | Intellij Idea | 2019.2.2 | |||
| Application | Jetbrains | Intellij Idea | 2019.2.1 | |||
| Application | Jetbrains | Intellij Idea | 2019.2 | |||
| Application | Jetbrains | Intellij Idea | 2019.1.4 | |||
| Application | Jetbrains | Intellij Idea | 2019.1.3 | |||
| Application | Jetbrains | Intellij Idea | 2019.1.2 | |||
| Application | Jetbrains | Intellij Idea | 2019.1.1 | |||
| Application | Jetbrains | Intellij Idea | 2019.1 | |||
| Application | Jetbrains | Intellij Idea | 2018.3.6 |