RSS   Vulnerabilities for 'Intellij idea'   RSS

2022-04-28
 
CVE-2022-29812

NVD-CWE-Other
 

 
In JetBrains IntelliJ IDEA before 2022.1 notification mechanisms about using Unicode directionality formatting characters were insufficient

 
 
CVE-2022-29813

CWE-94
 

 
In JetBrains IntelliJ IDEA before 2022.1 local code execution via custom Pandoc path was possible

 
 
CVE-2022-29814

CWE-94
 

 
In JetBrains IntelliJ IDEA before 2022.1 local code execution via HTML descriptions in custom JSON schemas was possible

 
 
CVE-2022-29815

CWE-94
 

 
In JetBrains IntelliJ IDEA before 2022.1 local code execution via workspace settings was possible

 
 
CVE-2022-29816

CWE-74
 

 
In JetBrains IntelliJ IDEA before 2022.1 HTML injection into IDE messages was possible

 
 
CVE-2022-29817

CWE-79
 

 
In JetBrains IntelliJ IDEA before 2022.1 reflected XSS via error messages in internal web server was possible

 
 
CVE-2022-29818

CWE-346
 

 
In JetBrains IntelliJ IDEA before 2022.1 origin checks in the internal web server were flawed

 
 
CVE-2022-29819

CWE-94
 

 
In JetBrains IntelliJ IDEA before 2022.1 local code execution via links in Quick Documentation was possible

 
2022-02-25
 
CVE-2022-24345

NVD-CWE-noinfo
 

 
In JetBrains IntelliJ IDEA before 2021.2.4, local code execution (without permission from a user) upon opening a project was possible.

 
 
CVE-2022-24346

NVD-CWE-noinfo
 

 
In JetBrains IntelliJ IDEA before 2021.3.1, local code execution via RLO (Right-to-Left Override) characters was possible.

 


Copyright 2024, cxsecurity.com

 

Back to Top