Filtered by vendor Jetbrains
Subscriptions
Total
404 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2021-43184 | 1 Jetbrains | 1 Youtrack | 2024-11-21 | 5.4 Medium |
| In JetBrains YouTrack before 2021.3.21051, stored XSS is possible. | ||||
| CVE-2021-43183 | 1 Jetbrains | 1 Hub | 2024-11-21 | 9.8 Critical |
| In JetBrains Hub before 2021.1.13690, the authentication throttling mechanism could be bypassed. | ||||
| CVE-2021-43182 | 1 Jetbrains | 1 Hub | 2024-11-21 | 7.5 High |
| In JetBrains Hub before 2021.1.13415, a DoS via user information is possible. | ||||
| CVE-2021-43181 | 1 Jetbrains | 1 Hub | 2024-11-21 | 6.1 Medium |
| In JetBrains Hub before 2021.1.13690, stored XSS is possible. | ||||
| CVE-2021-43180 | 1 Jetbrains | 1 Hub | 2024-11-21 | 7.5 High |
| In JetBrains Hub before 2021.1.13690, information disclosure via avatar metadata is possible. | ||||
| CVE-2021-3315 | 1 Jetbrains | 1 Teamcity | 2024-11-21 | 5.4 Medium |
| In JetBrains TeamCity before 2020.2.2, stored XSS on a tests page was possible. | ||||
| CVE-2021-37554 | 1 Jetbrains | 1 Youtrack | 2024-11-21 | 4.3 Medium |
| In JetBrains YouTrack before 2021.3.21051, a user could see boards without having corresponding permissions. | ||||
| CVE-2021-37553 | 1 Jetbrains | 1 Youtrack | 2024-11-21 | 7.5 High |
| In JetBrains YouTrack before 2021.2.16363, an insecure PRNG was used. | ||||
| CVE-2021-37552 | 1 Jetbrains | 1 Youtrack | 2024-11-21 | 5.4 Medium |
| In JetBrains YouTrack before 2021.2.17925, stored XSS was possible. | ||||
| CVE-2021-37551 | 1 Jetbrains | 1 Youtrack | 2024-11-21 | 5.3 Medium |
| In JetBrains YouTrack before 2021.2.16363, system user passwords were hashed with SHA-256. | ||||
| CVE-2021-37550 | 1 Jetbrains | 1 Youtrack | 2024-11-21 | 7.5 High |
| In JetBrains YouTrack before 2021.2.16363, time-unsafe comparisons were used. | ||||
| CVE-2021-37549 | 1 Jetbrains | 1 Youtrack | 2024-11-21 | 9.1 Critical |
| In JetBrains YouTrack before 2021.1.11111, sandboxing in workflows was insufficient. | ||||
| CVE-2021-37548 | 1 Jetbrains | 1 Teamcity | 2024-11-21 | 7.5 High |
| In JetBrains TeamCity before 2021.1, passwords in cleartext sometimes could be stored in VCS. | ||||
| CVE-2021-37547 | 1 Jetbrains | 1 Teamcity | 2024-11-21 | 5.3 Medium |
| In JetBrains TeamCity before 2020.2.4, insufficient checks during file uploading were made. | ||||
| CVE-2021-37546 | 1 Jetbrains | 1 Teamcity | 2024-11-21 | 5.3 Medium |
| In JetBrains TeamCity before 2021.1, an insecure key generation mechanism for encrypted properties was used. | ||||
| CVE-2021-37545 | 1 Jetbrains | 1 Teamcity | 2024-11-21 | 7.5 High |
| In JetBrains TeamCity before 2021.1.1, insufficient authentication checks for agent requests were made. | ||||
| CVE-2021-37544 | 1 Jetbrains | 1 Teamcity | 2024-11-21 | 9.8 Critical |
| In JetBrains TeamCity before 2020.2.4, there was an insecure deserialization. | ||||
| CVE-2021-37543 | 1 Jetbrains | 1 Rubymine | 2024-11-21 | 8.8 High |
| In JetBrains RubyMine before 2021.1.1, code execution without user confirmation was possible for untrusted projects. | ||||
| CVE-2021-37542 | 1 Jetbrains | 1 Teamcity | 2024-11-21 | 6.1 Medium |
| In JetBrains TeamCity before 2020.2.3, XSS was possible. | ||||
| CVE-2021-37541 | 1 Jetbrains | 1 Hub | 2024-11-21 | 6.1 Medium |
| In JetBrains Hub before 2021.1.13402, HTML injection in the password reset email was possible. | ||||