VYPR
Unrated severityNVD Advisory· Published Jul 3, 2019· Updated Aug 4, 2024

CVE-2019-9872

CVE-2019-9872

Description

In several versions of JetBrains IntelliJ IDEA Ultimate, creating run configurations for cloud application servers leads to saving a cleartext unencrypted record of the server credentials in the IDE configuration files. If the Settings Repository plugin was then used and configured to synchronize IDE settings using a public repository, these credentials were published to this repository. The issue has been fixed in the following versions: 2019.1, 2018.3.5, 2018.2.8, and 2018.1.8.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • JetBrains/IntelliJ IDEA Ultimatedescription
  • Range: <=2018.1.7, 2018.2.0-2018.2.7, 2018.3.0-2018.3.4, 2019.0.0-2019.0.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.