Description
In JetBrains IntelliJ IDEA before 2026.1.4,
2026.2 code execution via path traversal in project workspace ID handling was possible
Published: 2026-07-10
Score: 9.6 Critical
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Analysis and contextual insights are available on OpenCVE Cloud.

Remediation

No vendor fix or workaround currently provided.

Additional remediation guidance may be available on OpenCVE Cloud.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 13 Jul 2026 20:15:00 +0000

Type Values Removed Values Added
Title Path Traversal Vulnerability in IntelliJ IDEA Enables Remote Code Execution

Sun, 12 Jul 2026 13:00:00 +0000

Type Values Removed Values Added
Title Path Traversal Exploit in IntelliJ IDEA Project Workspace ID Handling

Sat, 11 Jul 2026 11:30:00 +0000

Type Values Removed Values Added
Title Path Traversal Exploit in IntelliJ IDEA Project Workspace ID Handling

Fri, 10 Jul 2026 18:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Fri, 10 Jul 2026 16:00:00 +0000

Type Values Removed Values Added
First Time appeared Jetbrains
Jetbrains intellij Idea
Vendors & Products Jetbrains
Jetbrains intellij Idea

Fri, 10 Jul 2026 14:45:00 +0000

Type Values Removed Values Added
Description In JetBrains IntelliJ IDEA before 2026.1.4, 2026.2 code execution via path traversal in project workspace ID handling was possible
Weaknesses CWE-23
References
Metrics cvssV3_1

{'score': 9.6, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:L'}


Subscriptions

Jetbrains Intellij Idea
cve-icon MITRE

Status: PUBLISHED

Assigner: JetBrains

Published:

Updated: 2026-07-10T17:00:13.965Z

Reserved: 2026-07-07T09:41:07.385Z

Link: CVE-2026-59792

cve-icon Vulnrichment

Updated: 2026-07-10T15:44:31.482Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-07-13T20:00:05Z

Weaknesses