561 CVEs

3 in CISA KEV

JetBrains Vulnerabilities

CVE security advisories and vulnerability history for JetBrains.

561

Total CVEs

Published

3

In CISA KEV

Exploited in the wild

7

Public exploits

With known exploit

5.3

Avg CVSS

2015–2026

Overview

JetBrains has 561 published CVE records since 2015, of which 3 are in CISA's Known Exploited Vulnerabilities catalog and 7 have a known public exploit. The average CVSS base score across scored CVEs is 5.3.

This page aggregates every publicly disclosed vulnerability (CVE) affecting JetBrains products, with severity breakdowns, the most-affected products, the most common weakness types, and the latest disclosures.

Severity and exploitation

How the CVSS severity of JetBrains's CVEs breaks down, plus how many are exploited in the wild or have public exploit code.

Critical6

High42

Medium217

Low52

244 additional CVEs have no CVSS severity score.

In CISA’s Known Exploited Vulnerabilities catalog

3

3 of JetBrains's CVEs are confirmed exploited in the wild.

Public exploits

7

7 of JetBrains's CVEs have a known public exploit available.

Most affected products

The JetBrains products with the most published CVEs.

TeamCity266 CVEs
youtrack108 CVEs
IntelliJ IDEA62 CVEs
hub33 CVEs
Ktor21 CVEs
toolbox11 CVEs
pycharm9 CVEs
Rider9 CVEs

Common weakness types

The CWE weakness categories most often found in JetBrains CVEs. Follow any weakness for its full explanation.

CNAs that assign these CVEs

The CVE Numbering Authorities that publish JetBrains CVE records.

Disclosure activity by year

How many JetBrains CVEs were published each year.

2019

58

2020

58

2021

95

2022

75

2023

54

2024

103

2025

83

2026

31

Latest JetBrains CVEs

The most recently disclosed vulnerabilities affecting JetBrains.

Medium vulnerability · 2026-05-29
Medium · CVSS 6.5
EPSS 0.0%2026-05-29
Medium vulnerability · 2026-05-29
Medium · CVSS 6.5
EPSS 0.0%2026-05-29
Medium vulnerability · 2026-05-29
Medium · CVSS 6.1
EPSS 0.1%2026-05-29
Low vulnerability · 2026-05-29
Low · CVSS 3.3
EPSS 0.0%2026-05-29
Medium vulnerability · 2026-05-29
Medium · CVSS 4.5
EPSS 0.0%2026-05-29
Low vulnerability · 2026-05-29
Low · CVSS 3.4
EPSS 0.0%2026-05-29
Low vulnerability · 2026-05-29
Low · CVSS 3.1
EPSS 0.0%2026-05-29
Medium vulnerability · 2026-05-29
Medium · CVSS 6.5
EPSS 0.0%2026-05-29
Medium vulnerability · 2026-05-29
Medium · CVSS 4.3
EPSS 0.0%2026-05-29
Medium vulnerability · 2026-05-29
Medium · CVSS 4.3
EPSS 0.0%2026-05-29
Medium vulnerability · 2026-05-29
Medium · CVSS 6.5
EPSS 0.0%2026-05-29
Medium vulnerability · 2026-05-29
Medium · CVSS 6.1
EPSS 0.0%2026-05-29

Track new JetBrains CVEs as they are disclosed and get AI-written analysis and remediation guidance.

Monitor JetBrains CVEs

Other vendors

Browse vulnerabilities for other tracked vendors.

symantec582 CVEs Mattermost577 CVEs trendmicro571 CVEs zohocorp561 CVEs itsourcecode548 CVEs typo3548 CVEs SAP_SE543 CVEs QNAP Systems Inc.532 CVEs

Browse all vendors

Frequently asked questions

Common questions about JetBrains vulnerabilities.

How many CVEs does JetBrains have?

JetBrains has 561 published CVE records since 2015, including 114 in the last two years.

How many JetBrains CVEs are in CISA KEV?

Yes — 3 of JetBrains's CVEs are listed in CISA's Known Exploited Vulnerabilities catalog, confirmed exploited in the wild and carrying a CISA remediation deadline.

Which JetBrains products have the most CVEs?

The JetBrains products with the most published CVEs are TeamCity, youtrack, IntelliJ IDEA, hub, Ktor.

What are the most common weakness types in JetBrains CVEs?

JetBrains's CVEs most often map to these CWE weakness types: CWE-79 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')), CWE-863 (Incorrect Authorization), CWE-532 (Insertion of Sensitive Information into Log File), CWE-862 (Missing Authorization).

Are there public exploits for JetBrains vulnerabilities?

Yes — 7 of JetBrains's CVEs have a known public exploit.

How many critical JetBrains vulnerabilities are there?

JetBrains has 6 critical and 42 high-severity CVEs.

What is the average severity of JetBrains CVEs?

The average CVSS base score across JetBrains's scored CVEs is 5.3.

References

Vulnerability data is sourced from the CVE Program; severity, KEV, and exploit signals are aggregated by RadicalNotion.AI.

Track JetBrains vulnerabilities

Monitor new JetBrains vulnerabilities as they are disclosed, with AI-written analysis and remediation guidance.

Start free See pricing