Unrated severityNVD Advisory· Published Jul 3, 2019· Updated Aug 4, 2024
CVE-2019-9872
CVE-2019-9872
Description
In several versions of JetBrains IntelliJ IDEA Ultimate, creating run configurations for cloud application servers leads to saving a cleartext unencrypted record of the server credentials in the IDE configuration files. If the Settings Repository plugin was then used and configured to synchronize IDE settings using a public repository, these credentials were published to this repository. The issue has been fixed in the following versions: 2019.1, 2018.3.5, 2018.2.8, and 2018.1.8.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- JetBrains/IntelliJ IDEA Ultimatedescription
- Range: <=2018.1.7, 2018.2.0-2018.2.7, 2018.3.0-2018.3.4, 2019.0.0-2019.0.0
Patches
Vulnerability mechanics
References
1- blog.jetbrains.com/blog/2019/06/19/jetbrains-security-bulletin-q1-2019/mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.