Known Vulnerabilities for products from Jetbrains
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Jetbrains".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-41153 json | Not Provided | 2026-04-17 | 2026-04-20 | |
| CVE-2026-33392 json | In JetBrains YouTrack before 2025.3.131383 high privileged user can achieve RCE via sandbox bypass | Not Provided | 2026-04-17 | 2026-04-20 |
| CVE-2026-32745 json | In JetBrains Datalore before 2026.1 session hijacking was possible due to missing secure attribute for cookie settings | Not Provided | 2026-03-13 | 2026-04-02 |
| CVE-2026-32229 json | In JetBrains Hub before 2026.1 possible on sign-in account mismatch with non-SSO auth and 2FA disabled | Not Provided | 2026-03-11 | 2026-04-02 |
| CVE-2024-27199 json | In JetBrains TeamCity before 2023.11.4 path traversal allowing to perform limited admin actions was possible | Not Provided | 2024-03-04 | 2026-04-21 |
| CVE-2024-27198 json | 9.8 - CRITICAL | 2024-03-04 | 2024-03-11 | |
| CVE-2024-22370 json | 5.4 - MEDIUM | 2024-01-09 | 2024-01-12 | |
| CVE-2023-45613 json | In JetBrains Ktor before 2.3.5 server certificates were not verified | 9.1 - CRITICAL | 2023-10-09 | 2023-10-12 |
| CVE-2023-45612 json | In JetBrains Ktor before 2.3.5 default configuration of ContentNegotiation with XML format was vulnerable to XXE | 9.8 - CRITICAL | 2023-10-09 | 2023-10-12 |
| CVE-2023-43566 json | In JetBrains TeamCity before 2023.05.4 stored XSS was possible during nodes configuration | 5.4 - MEDIUM | 2023-09-19 | 2023-09-21 |
| CVE-2023-42793 json | In JetBrains TeamCity before 2023.05.4 authentication bypass leading to RCE on TeamCity Server was possible | 9.8 - CRITICAL | 2023-09-19 | 2023-10-03 |
| CVE-2023-41250 json | In JetBrains TeamCity before 2023.05.3 reflected XSS was possible during user registration | 6.1 - MEDIUM | 2023-08-25 | 2023-08-28 |
| CVE-2023-41249 json | In JetBrains TeamCity before 2023.05.3 reflected XSS was possible during copying Build Step | 6.1 - MEDIUM | 2023-08-25 | 2023-08-28 |
| CVE-2023-41248 json | In JetBrains TeamCity before 2023.05.3 stored XSS was possible during Cloud Profiles configuration | 5.4 - MEDIUM | 2023-08-25 | 2023-08-28 |
| CVE-2023-39261 json | In JetBrains IntelliJ IDEA before 2023.2 plugin for Space was requesting excessive permissions | 7.8 - HIGH | 2023-07-26 | 2023-08-02 |
| CVE-2023-39175 json | In JetBrains TeamCity before 2023.05.2 reflected XSS via GitHub integration was possible | 6.1 - MEDIUM | 2023-07-25 | 2023-08-01 |
| CVE-2023-39174 json | In JetBrains TeamCity before 2023.05.2 a ReDoS attack was possible via integration with issue trackers | 7.5 - HIGH | 2023-07-25 | 2023-08-01 |
| CVE-2023-39173 json | In JetBrains TeamCity before 2023.05.2 a token with limited permissions could be used to gain full account access | 8.8 - HIGH | 2023-07-25 | 2023-08-01 |
| CVE-2023-38069 json | In JetBrains IntelliJ IDEA before 2023.1.4 license dialog could be suppressed in certain cases | 3.3 - LOW | 2023-07-12 | 2023-07-20 |
| CVE-2023-38068 json | In JetBrains YouTrack before 2023.1.16597 captcha was not properly validated for Helpdesk forms | 7.3 - HIGH | 2023-07-12 | 2023-07-20 |
Known software with vulnerabilities from Jetbrains
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Jetbrains | Dotpeek | 10.0 |
| Application | Jetbrains | Goland | 2017.3 |
| Application | Jetbrains | Hub | 1.0.648 |
| Application | Jetbrains | Ideavim | - |
| Application | Jetbrains | Idetalk | 193.4099.10 |
| Application | Jetbrains | Intellij Idea | - |
| Application | Jetbrains | Kotlin | 0.9 |
| Application | Jetbrains | Ktor | 0.0.1 |
| Application | Jetbrains | Mps | - |
| Application | Jetbrains | Omea Reader | 2.2 |
| Application | Jetbrains | Pycharm | - |
| Application | Jetbrains | Resharper | 10.0 |
| Application | Jetbrains | Resharper Ultimate | 2016.1 |
| Application | Jetbrains | Rider | - |
| Application | Jetbrains | Scala | 2019.2.1 |
| Application | Jetbrains | Space | - |
| Application | Jetbrains | Teamcity | 10.0 |
| Application | Jetbrains | Toolbox | - |
| Application | Jetbrains | Upsource | 1.0 |
| Application | Jetbrains | Vim | - |