Information Disclosure in JetBrains Junie Product
CVE-2025-58335

5.5MEDIUM

Key Information:

Vendor

Jetbrains
Status
Junie
Vendor
CVE Published:
28 August 2025

What is CVE-2025-58335?

A vulnerability has been identified in JetBrains Junie that allows for potential information disclosure via the search_project function. This flaw affects multiple versions of the Junie product, enabling unauthorized parties to access sensitive information. Users are advised to review their configurations and apply updates to mitigate potential risks.

Affected Version(s)

Junie 0 < 252.284.66, 251.284.66, 243.284.66, 252.284.61, 251.284.61, 243.284.61, 252.284.50, 252.284.54, 251.284.54, 251.284.50, 243.284.54, 243.284.50

References

https://www.jetbrains.com/privacy-security/issues-fixed/

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
None
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2025-58335 : Information Disclosure in JetBrains Junie Product