exploitDog

GHSA-57f8-j9vv-vx4g

Опубликовано: 08 дек. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.5

Описание

In JetBrains IntelliJ IDEA before 2022.3 an XXE attack leading to SSRF via requests to custom plugin repositories was possible.

In JetBrains IntelliJ IDEA before 2022.3 an XXE attack leading to SSRF via requests to custom plugin repositories was possible.

Ссылки

EPSS

Процентиль: 0%

0.00002

Низкий

5.5 Medium

CVSS3

CVE ID

Дефекты

CWE-611

Связанные уязвимости

CVE-2022-46827

CVSS3: 3.9

nvd

около 3 лет назад

In JetBrains IntelliJ IDEA before 2022.3 an XXE attack leading to SSRF via requests to custom plugin repositories was possible.

CVE-2022-46827

CVSS3: 3.9

debian

около 3 лет назад

In JetBrains IntelliJ IDEA before 2022.3 an XXE attack leading to SSRF ...

EPSS

Процентиль: 0%

0.00002

Низкий

5.5 Medium

CVSS3

CVE ID

Дефекты

CWE-611