Search CVE reports


Toggle filters

1 – 10 of 24 results


CVE-2013-1055

Low priority

Some fixes available 2 of 5

The unity-firefox-extension package could be tricked into dropping a C callback which was still in use, which Firefox would then free, causing Firefox to crash. This could be achieved by adding an action to the launcher and...

1 affected package

unity-firefox-extension

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
unity-firefox-extension
Show less packages

CVE-2013-1054

Low priority

Some fixes available 2 of 5

The unity-firefox-extension package could be tricked into destroying the Unity webapps context, causing Firefox to crash. This could be achieved by spinning the event loop inside the webapps initialization callback. Fixed in...

1 affected package

unity-firefox-extension

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
unity-firefox-extension
Show less packages

CVE-2015-7946

Medium priority
Ignored

Information Exposure vulnerability in Unity8 as used on the Ubuntu phone and possibly also in Unity8 shipped elsewhere. This allows an attacker to enable the MTP service by opening the emergency dialer. Fixed...

1 affected package

unity8

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
unity8 Not in release Not affected
Show less packages

CVE-2020-11690

Medium priority
Needs evaluation

In JetBrains IntelliJ IDEA before 2020.1, the license server could be resolved to an untrusted host in some cases.

1 affected package

intellij-community-idea

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
intellij-community-idea Needs evaluation Needs evaluation Not in release Not in release Not in release
Show less packages

CVE-2020-7914

Medium priority
Needs evaluation

In JetBrains IntelliJ IDEA 2019.2, an XSLT debugger plugin misconfiguration allows arbitrary file read operations over the network. This issue was fixed in 2019.3.

2 affected packages

intellij-community-idea, intellij-idea

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
intellij-community-idea Needs evaluation Needs evaluation Not in release Not in release Not in release
intellij-idea Not in release Not in release Not in release Not in release Not in release
Show less packages

CVE-2020-7905

Medium priority
Needs evaluation

Ports listened to by JetBrains IntelliJ IDEA before 2019.3 were exposed to the network.

2 affected packages

intellij-community-idea, intellij-idea

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
intellij-community-idea Needs evaluation Needs evaluation Not in release Not in release Not in release
intellij-idea Not in release Not in release Not in release Not in release Not in release
Show less packages

CVE-2020-7904

Medium priority
Needs evaluation

In JetBrains IntelliJ IDEA before 2019.3, some Maven repositories were accessed via HTTP instead of HTTPS.

2 affected packages

intellij-community-idea, intellij-idea

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
intellij-community-idea Needs evaluation Needs evaluation Not in release Not in release Not in release
intellij-idea Not in release Not in release Not in release Not in release Not in release
Show less packages

CVE-2019-18361

Medium priority
Needs evaluation

JetBrains IntelliJ IDEA before 2019.2 allows local user privilege escalation, potentially leading to arbitrary code execution.

2 affected packages

intellij-community-idea, intellij-idea

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
intellij-community-idea Needs evaluation Needs evaluation Not in release Not in release Not in release
intellij-idea Not in release Not in release Not in release Not in release Not in release
Show less packages

CVE-2019-14954

Medium priority
Needs evaluation

JetBrains IntelliJ IDEA before 2019.2 was resolving the markdown plantuml artifact download link via a cleartext http connection.

2 affected packages

intellij-community-idea, intellij-idea

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
intellij-community-idea Needs evaluation Needs evaluation Not in release Not in release Not in release
intellij-idea Not in release Not in release Not in release Not in release Not in release
Show less packages

CVE-2019-10103

Low priority
Needs evaluation

JetBrains IntelliJ IDEA projects created using the Kotlin (JS Client/JVM Server) IDE Template were resolving Gradle artifacts using an http connection, potentially allowing an MITM attack. This issue, which was fixed in Kotlin...

2 affected packages

intellij-community-idea, intellij-idea

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
intellij-community-idea Needs evaluation Needs evaluation Not in release Not in release Not in release
intellij-idea Not in release Not in release Not in release Not in release Not in release
Show less packages