When using the attachment interaction functionality, Blue Mail 1.140.103 and below saves documents to a file system without a Mark-of-the-Web tag, which allows attackers to bypass the built-in file protection mechanisms of both Windows OS and third-party software.

CVE Database V5

Detailed information about CVE-2025-65319: n/a. Get real-time updates, technical details, and mitigation strategies.

CVE-2025-65319: n/a - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-65319: n/a

In JetBrains IntelliJ IDEA before 2025.3 missing confirmation allowed opening of untrusted remote projects over SSH

CVE-2025-68269 is a vulnerability identified in JetBrains IntelliJ IDEA versions prior to 2025.3, categorized under CWE-349, which concerns missing confirmation for critical actions. Specifically, this vulnerability arises because the IDE does not prompt users for confirmation when opening remote projects over SSH connections that are untrusted. This lack of confirmation can lead users to inadvertently open malicious remote projects, which could contain harmful code or configurations. The vulnerability has a CVSS v3.1 base score of 5.4 (medium severity), with an attack vector of network (AV:N), low attack complexity (AC:L), no privileges required (PR:N), but requiring user interaction (UI:R). The scope remains unchanged (S:U), and the impact affects confidentiality and integrity to a low degree (C:L, I:L), with no impact on availability (A:N). The absence of a patch at the time of reporting means users remain exposed. Although no known exploits are currently in the wild, the vulnerability could be leveraged in targeted attacks where an adversary controls or compromises a remote SSH server hosting project files. By exploiting this flaw, attackers could execute malicious code or manipulate project files, potentially compromising developer environments or leaking sensitive information. The vulnerability is particularly relevant for organizations relying on remote development workflows using IntelliJ IDEA over SSH.

Detailed information about CVE-2025-68269: CWE-349 in JetBrains IntelliJ IDEA affecting JetBrains IntelliJ IDEA. Get real-time updates, technical details, and m

CVE-2025-68269: CWE-349 in JetBrains IntelliJ IDEA - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-68269: CWE-349 in JetBrains IntelliJ IDEA

In JetBrains TeamCity before 2025.11.1 reflected XSS was possible on the storage settings page

CVE-2025-68268 is a reflected Cross-Site Scripting (XSS) vulnerability categorized under CWE-79, discovered in JetBrains TeamCity versions before 2025.11.1. The vulnerability exists on the storage settings page, where user-supplied input is improperly sanitized or encoded, allowing malicious script injection that is reflected back to the user's browser. This flaw can be exploited remotely without authentication, requiring only that a victim user interacts with a crafted URL or malicious link. The CVSS 3.1 score of 5.4 indicates a medium severity level, with an attack vector of network (AV:N), low attack complexity (AC:L), no privileges required (PR:N), but requiring user interaction (UI:R). The impact affects confidentiality and integrity to a limited extent, as attackers could steal session cookies, perform actions on behalf of the user, or conduct phishing attacks within the context of the TeamCity web interface. There is no impact on availability. No public exploits have been reported yet, but the presence of this vulnerability in a widely used continuous integration tool poses a risk to software development pipelines. JetBrains has reserved the CVE and is expected to release a patch in version 2025.11.1. Until then, organizations should be cautious about exposing TeamCity interfaces to untrusted networks and monitor for suspicious requests targeting the storage settings page. The vulnerability highlights the importance of proper input validation and output encoding in web applications, especially in administrative interfaces.

Detailed information about CVE-2025-68268: CWE-79 in JetBrains TeamCity affecting JetBrains TeamCity. Get real-time updates, technical details, and mitigation s

CVE-2025-68268: CWE-79 in JetBrains TeamCity - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-68268: CWE-79 in JetBrains TeamCity

In JetBrains TeamCity before 2025.11.1 excessive privileges were possible due to storing GitHub personal access token instead of an installation token

CVE-2025-68267 is a vulnerability identified in JetBrains TeamCity, a widely used continuous integration and deployment server, affecting versions prior to 2025.11.1. The root cause is the storage and use of GitHub personal access tokens (PATs) instead of the more restrictive GitHub installation tokens. PATs generally have broader privileges and longer lifetimes, which can lead to excessive privilege escalation (CWE-272: Improper Authorization). This misconfiguration allows an attacker who can access the token to perform actions beyond the intended scope, potentially accessing or modifying repositories and CI/CD configurations. The vulnerability is remotely exploitable over the network without requiring authentication or user interaction, increasing its risk profile. The CVSS v3.1 base score is 6.5, indicating a medium severity level with low confidentiality and integrity impact and no availability impact. No exploits have been reported in the wild yet, but the flaw's nature suggests that attackers could leverage it to escalate privileges within the CI/CD environment, potentially leading to unauthorized code changes or pipeline manipulation. The vulnerability highlights the importance of using least-privilege tokens and proper credential management in CI/CD tools integrated with external services like GitHub.

Detailed information about CVE-2025-68267: CWE-272 in JetBrains TeamCity affecting JetBrains TeamCity. Get real-time updates, technical details, and mitigation 

CVE-2025-68267: CWE-272 in JetBrains TeamCity - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-68267: CWE-272 in JetBrains TeamCity

When using the attachment interaction functionality, Canary Mail 5.1.40 and below saves documents to a file system without a Mark-of-the-Web tag, which allows attackers to bypass the built-in file protection mechanisms of both Windows OS and third-party software.

Detailed information about CVE-2025-65318: n/a. Get real-time updates, technical details, and mitigation strategies.

CVE-2025-65318: n/a

CVE-2025-65318: n/a

Description

Technical Details

Community Reviews

Related Threats

CVE-2025-65319: n/a

CVE-2025-68269: CWE-349 in JetBrains IntelliJ IDEA

CVE-2025-68268: CWE-79 in JetBrains TeamCity

CVE-2025-68267: CWE-272 in JetBrains TeamCity

CVE-2025-68166: CWE-79 in JetBrains TeamCity

Actions

External Links

Need enhanced features?

Latest Threats

Keyboard Shortcuts

Navigation

Search & Filters

UI Controls

Accessibility