Known Vulnerabilities for products from JetBrains
Listed below are 20 of the newest known vulnerabilities associated with the vendor "JetBrains".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-57926 json | Not Provided | 2026-06-26 | 2026-06-26 | |
| CVE-2026-57925 json | Not Provided | 2026-06-26 | 2026-06-26 | |
| CVE-2026-57924 json | In JetBrains YouTrack before 2026.2.16593 default role configuration exposed excessive user profile details | Not Provided | 2026-06-26 | 2026-06-27 |
| CVE-2026-57923 json | In JetBrains YouTrack before 2026.2.16593 improper authorisation in the app configurations endpoint allowed modifying project... | Not Provided | 2026-06-26 | 2026-06-27 |
| CVE-2026-57922 json | In JetBrains YouTrack before 2026.2.16593 project settings disclosure via the MCP was possible | Not Provided | 2026-06-26 | 2026-06-27 |
| CVE-2026-57921 json | Not Provided | 2026-06-26 | 2026-06-26 | |
| CVE-2026-56142 json | In JetBrains Hub before 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 2024.2.148429 privilege esc... | Not Provided | 2026-06-19 | 2026-06-26 |
| CVE-2026-56141 json | In JetBrains Hub before 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 2024.2.148429 account takeo... | Not Provided | 2026-06-19 | 2026-06-26 |
| CVE-2026-53915 json | In JetBrains GoLand before 2026.1.3 remote code execution was possible via untrusted project configuration | Not Provided | 2026-06-19 | 2026-06-26 |
| CVE-2026-53914 json | In JetBrains Kotlin before 2.4.20 code execution was possible via unsafe deserialization in the build cache metadata | Not Provided | 2026-06-26 | 2026-06-27 |
| CVE-2026-50242 json | In JetBrains Hub before 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 2024.2.148429 authenticatio... | Not Provided | 2026-06-19 | 2026-06-26 |
| CVE-2026-49386 json | In JetBrains YouTrack before 2026.1.13570 improper access control allowed enumeration of restricted issues and articles on Pl... | Not Provided | 2026-05-29 | 2026-06-01 |
| CVE-2026-49385 json | In JetBrains YouTrack before 2026.1.13570 improper access control allowed low-privileged users to modify service accounts | Not Provided | 2026-05-29 | 2026-06-01 |
| CVE-2026-49384 json | In JetBrains PyCharm before 2025.3.4 stored XSS in Jupyter notebook Markdown cells was possible | Not Provided | 2026-05-29 | 2026-06-01 |
| CVE-2026-49383 json | In JetBrains IntelliJ IDEA before 2026.1 xXE in the UI Designer form parser was possible | Not Provided | 2026-05-29 | 2026-06-01 |
| CVE-2026-49382 json | In JetBrains IntelliJ IDEA before 2026.1 code execution was possible via template injection in the Copyright plugin | Not Provided | 2026-05-29 | 2026-06-01 |
| CVE-2026-49381 json | In JetBrains TeamCity before 2026.1 stored XSS on the SAML login page was possible | Not Provided | 2026-05-29 | 2026-06-02 |
| CVE-2026-49380 json | In JetBrains TeamCity before 2026.1 open redirect in the SAML plugin was possible | Not Provided | 2026-05-29 | 2026-06-02 |
| CVE-2026-49379 json | In JetBrains TeamCity before 2026.1 credentials could be exposed in thread names | Not Provided | 2026-05-29 | 2026-06-02 |
| CVE-2026-49378 json | In JetBrains TeamCity before 2026.1 credentials parameters were exposed via parameter autocompletion | Not Provided | 2026-05-29 | 2026-06-02 |
Known software with vulnerabilities from JetBrains
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Jetbrains | Dotpeek | 10.0 |
| Application | Jetbrains | Goland | 2017.3 |
| Application | Jetbrains | Hub | 1.0.648 |
| Application | Jetbrains | Ideavim | - |
| Application | Jetbrains | Idetalk | 193.4099.10 |
| Application | Jetbrains | Intellij Idea | - |
| Application | Jetbrains | Kotlin | 0.9 |
| Application | Jetbrains | Ktor | 0.0.1 |
| Application | Jetbrains | Mps | - |
| Application | Jetbrains | Omea Reader | 2.2 |
| Application | Jetbrains | Pycharm | - |
| Application | Jetbrains | Resharper | 10.0 |
| Application | Jetbrains | Resharper Ultimate | 2016.1 |
| Application | Jetbrains | Rider | - |
| Application | Jetbrains | Scala | 2019.2.1 |
| Application | Jetbrains | Space | - |
| Application | Jetbrains | Teamcity | 10.0 |
| Application | Jetbrains | Toolbox | - |
| Application | Jetbrains | Upsource | 1.0 |
| Application | Jetbrains | Vim | - |