Path Traversal Vulnerability in JetBrains IntelliJ IDEA
CVE-2026-59792

9.6CRITICAL

Key Information:

Vendor

Jetbrains

Vendor
CVE Published:
10 July 2026

What is CVE-2026-59792?

A critical vulnerability in JetBrains IntelliJ IDEA allows unauthorized code execution through path traversal methods in the handling of project workspace ID. This flaw affects specific versions of the software prior to the updates in 2026.1.4 and 2026.2, exposing users to potential security risks. It is imperative for users of the affected versions to apply the latest updates to mitigate these vulnerabilities.

Affected Version(s)

IntelliJ IDEA 0 < 2026.1.4, 2026.2

References

CVSS V3.1

Score:
9.6
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.