Known Vulnerabilities for products from Jetbrains
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Jetbrains".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-49386 json | Not Provided | 2026-05-29 | 2026-05-29 | |
| CVE-2026-49385 json | Not Provided | 2026-05-29 | 2026-05-29 | |
| CVE-2026-49384 json | Not Provided | 2026-05-29 | 2026-05-29 | |
| CVE-2026-49383 json | Not Provided | 2026-05-29 | 2026-05-29 | |
| CVE-2026-49382 json | Not Provided | 2026-05-29 | 2026-05-29 | |
| CVE-2026-49381 json | Not Provided | 2026-05-29 | 2026-05-29 | |
| CVE-2026-49380 json | Not Provided | 2026-05-29 | 2026-05-29 | |
| CVE-2026-49379 json | Not Provided | 2026-05-29 | 2026-05-29 | |
| CVE-2026-49378 json | Not Provided | 2026-05-29 | 2026-05-29 | |
| CVE-2026-49377 json | Not Provided | 2026-05-29 | 2026-05-29 | |
| CVE-2026-44413 json | In JetBrains TeamCity before 2026.1 2025.11.5 authenticated users could expose server API to unauthorised access | Not Provided | 2026-05-11 | 2026-05-12 |
| CVE-2026-41882 json | In JetBrains IntelliJ IDEA before 2024.3.7.1, 2025.1.7.1, 2025.2.6.2, 2025.3.4.1, 2026.1.1 reading arbitrary local files ... | Not Provided | 2026-04-30 | 2026-05-05 |
| CVE-2026-41153 json | In JetBrains Junie before 252.549.29 command execution was possible via malicious project file | Not Provided | 2026-04-17 | 2026-04-27 |
| CVE-2026-33392 json | In JetBrains YouTrack before 2025.3.131383 high privileged user can achieve RCE via sandbox bypass | Not Provided | 2026-04-17 | 2026-04-20 |
| CVE-2026-32745 json | In JetBrains Datalore before 2026.1 session hijacking was possible due to missing secure attribute for cookie settings | Not Provided | 2026-03-13 | 2026-04-02 |
| CVE-2026-32229 json | In JetBrains Hub before 2026.1 possible on sign-in account mismatch with non-SSO auth and 2FA disabled | Not Provided | 2026-03-11 | 2026-04-02 |
| CVE-2024-27199 json | In JetBrains TeamCity before 2023.11.4 path traversal allowing to perform limited admin actions was possible | Not Provided | 2024-03-04 | 2026-04-21 |
| CVE-2024-27198 json | 9.8 - CRITICAL | 2024-03-04 | 2024-03-11 | |
| CVE-2024-22370 json | 5.4 - MEDIUM | 2024-01-09 | 2024-01-12 | |
| CVE-2023-45613 json | In JetBrains Ktor before 2.3.5 server certificates were not verified | 9.1 - CRITICAL | 2023-10-09 | 2023-10-12 |
Known software with vulnerabilities from Jetbrains
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Jetbrains | Dotpeek | 10.0 |
| Application | Jetbrains | Goland | 2017.3 |
| Application | Jetbrains | Hub | 1.0.648 |
| Application | Jetbrains | Ideavim | - |
| Application | Jetbrains | Idetalk | 193.4099.10 |
| Application | Jetbrains | Intellij Idea | - |
| Application | Jetbrains | Kotlin | 0.9 |
| Application | Jetbrains | Ktor | 0.0.1 |
| Application | Jetbrains | Mps | - |
| Application | Jetbrains | Omea Reader | 2.2 |
| Application | Jetbrains | Pycharm | - |
| Application | Jetbrains | Resharper | 10.0 |
| Application | Jetbrains | Resharper Ultimate | 2016.1 |
| Application | Jetbrains | Rider | - |
| Application | Jetbrains | Scala | 2019.2.1 |
| Application | Jetbrains | Space | - |
| Application | Jetbrains | Teamcity | 10.0 |
| Application | Jetbrains | Toolbox | - |
| Application | Jetbrains | Upsource | 1.0 |
| Application | Jetbrains | Vim | - |