Home

CVE-2020-7914

Description

In JetBrains IntelliJ IDEA 2019.2, an XSLT debugger plugin misconfiguration allows arbitrary file read operations over the network. This issue was fixed in 2019.3.

Risk Information

Base Score
7.5
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
0.004

Associated Vulnerability

VulnerabilityOS Platform
Vulnerabilities CVE-2020-7904,CVE-2020-7905,CVE-2020-7914 are fixed in IntelliJ IDEA Community Edition (x64) 2019.3Windows
Vulnerabilities CVE-2020-7904,CVE-2020-7905,CVE-2020-7914 are fixed in IntelliJ IDEA Ultimate 2019.3Windows

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234