GitHub access token could be exposed to third-party sites in JetBrains IDEs after version 2023.1 and less than: IntelliJ IDEA 2023.1.7, 2023.2.7, 2023.3.7, 2024.1.3, 2024.2 EAP3; Aqua 2024.1.2; CLion 2023.1.7, 2023.2.4, 2023.3.5, 2024.1.3, 2024.2 EAP2; DataGrip 2023.1.3, 2023.2.4, 2023.3.5, 2024.1.4; DataSpell 2023.1.6, 2023.2.7, 2023.3.6, 2024.1.2, 2024.2 EAP1; GoLand 2023.1.6, 2023.2.7, 2023.3.7, 2024.1.3, 2024.2 EAP3; MPS 2023.2.1, 2023.3.1, 2024.1 EAP2; PhpStorm 2023.1.6, 2023.2.6, 2023.3.7, 2024.1.3, 2024.2 EAP3; PyCharm 2023.1.6, 2023.2.7, 2023.3.6, 2024.1.3, 2024.2 EAP2; Rider 2023.1.7, 2023.2.5, 2023.3.6, 2024.1.3; RubyMine 2023.1.7, 2023.2.7, 2023.3.7, 2024.1.3, 2024.2 EAP4; RustRover 2024.1.1; WebStorm 2023.1.6, 2023.2.7, 2023.3.7, 2024.1.4
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:NJetbrains Aqua
APPJetbrains< 2024.1.2Jetbrains Clion
APPJetbrains< 2023.1.72023.2.0 β 2023.2.4 (bez)2023.3.0 β 2023.3.5 (bez)2024.1.0 β 2024.1.3 (bez)Jetbrains Datagrip
APPJetbrains2023.1.0 β 2023.1.3 (bez)2023.2.0 β 2023.2.4 (bez)2023.3.0 β 2023.3.5 (bez)2024.1.0 β 2024.1.4 (bez)Jetbrains Dataspell
APPJetbrains< 2023.1.62023.2.0 β 2023.2.7 (bez)2023.3.0 β 2023.3.6 (bez)2024.1.0 β 2024.1.2 (bez)Jetbrains Goland
APPJetbrains< 2023.1.62023.2.0 β 2023.2.7 (bez)2023.3.0 β 2023.3.7 (bez)2024.1.0 β 2024.1.3 (bez)Jetbrains Intellij Idea
APPJetbrains< 2023.1.72023.2.0 β 2023.2.7 (bez)2023.3.0 β 2023.3.7 (bez)2024.1.0 β 2024.1.3 (bez)Jetbrains Mps
APPJetbrains2023.3.0< 2023.2.1Jetbrains Phpstorm
APPJetbrains< 2023.1.62023.2.0 β 2023.2.6 (bez)2023.3.0 β 2023.3.7 (bez)2024.1.0 β 2024.1.3 (bez)Jetbrains Pycharm
APPJetbrains< 2023.1.62023.2.0 β 2023.2.7 (bez)2023.3.0 β 2023.3.6 (bez)2024.1.0 β 2024.1.3 (bez)Jetbrains Rider
APPJetbrains< 2023.1.72023.2.0 β 2023.2.5 (bez)2023.3.0 β 2023.3.6 (bez)2024.1.0 β 2024.1.3 (bez)Jetbrains Rubymine
APPJetbrains< 2023.1.72023.2.0 β 2023.2.7 (bez)2023.3.0 β 2023.3.7 (bez)2024.1.0 β 2024.1.3 (bez)Jetbrains Rustrover
APPJetbrains< 2024.1.1Jetbrains Webstorm
APPJetbrains< 2023.1.62023.2.0 β 2023.2.7 (bez)2023.3.0 β 2023.3.7 (bez)2024.1.0 β 2024.1.4 (bez)
Related vulnerabilities
JetBrains IntelliJ IDEA 2021.3.1 Preview, IntelliJ IDEA 2021.3.1 RC, PyCharm Professional 2021.3.1 RC, GoLand ...
In JetBrains WebStorm before 2021.1, code execution without user confirmation was possible for untrusted proje...
In JetBrains IntelliJ IDEA before 2020.1, the license server could be resolved to an untrusted host in some ca...
In several JetBrains IntelliJ IDEA versions, a Spring Boot run configuration with the default setting allowed ...
In several JetBrains IntelliJ IDEA versions, creating remote run configurations of JavaEE application servers ...