In JetBrains IntelliJ IDEA before 2026.1.4, 2026.2 code execution via path traversal in project workspace ID handling was possible
History

Thu, 16 Jul 2026 18:30:00 +0000

Type Values Removed Values Added
Title Path Traversal Vulnerability in IntelliJ IDEA Workspace ID Handling

Wed, 15 Jul 2026 13:30:00 +0000

Type Values Removed Values Added
Title Path Traversal Vulnerability in IntelliJ IDEA Enables Remote Code Execution

Mon, 13 Jul 2026 20:15:00 +0000

Type Values Removed Values Added
Title Path Traversal Vulnerability in IntelliJ IDEA Enables Remote Code Execution

Sun, 12 Jul 2026 13:00:00 +0000

Type Values Removed Values Added
Title Path Traversal Exploit in IntelliJ IDEA Project Workspace ID Handling

Sat, 11 Jul 2026 11:30:00 +0000

Type Values Removed Values Added
Title Path Traversal Exploit in IntelliJ IDEA Project Workspace ID Handling

Fri, 10 Jul 2026 18:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Fri, 10 Jul 2026 16:00:00 +0000

Type Values Removed Values Added
First Time appeared Jetbrains
Jetbrains intellij Idea
Vendors & Products Jetbrains
Jetbrains intellij Idea

Fri, 10 Jul 2026 14:45:00 +0000

Type Values Removed Values Added
Description In JetBrains IntelliJ IDEA before 2026.1.4, 2026.2 code execution via path traversal in project workspace ID handling was possible
Weaknesses CWE-23
References
Metrics cvssV3_1

{'score': 9.6, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:L'}


cve-icon MITRE

Status: PUBLISHED

Assigner: JetBrains

Published: 2026-07-10T14:18:57.311Z

Updated: 2026-07-14T03:55:40.249Z

Reserved: 2026-07-07T09:41:07.385Z

Link: CVE-2026-59792

cve-icon Vulnrichment

Updated: 2026-07-10T15:44:31.482Z

cve-icon NVD

No data.

cve-icon Redhat

No data.