Insufficient Checks in VCS Project Retrieval Lead to Local Code Execution in JetBrains IntelliJ IDEA 2020.3.3

Insufficient Checks in VCS Project Retrieval Lead to Local Code Execution in JetBrains IntelliJ IDEA 2020.3.3

CVE-2021-29263 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

In JetBrains IntelliJ IDEA 2020.3.3, local code execution was possible because of insufficient checks when getting the project from VCS.

Learn more about our Web Application Penetration Testing UK.