all InfoSec News
JetBrains Warns of GitHub Plugin that Exposes Access Tokens
GBHackers On Security gbhackers.com
A critical vulnerability (CVE-2024-37051) in the JetBrains GitHub plugin for IntelliJ-based IDEs (2023.1 and later) exposed access tokens to malicious content within GitHub pull requests, allowing attackers to steal tokens and potentially compromise linked accounts, even with two-factor authentication enabled. JetBrains has addressed the issue with a patch and collaborated with GitHub on mitigation efforts. […]
The post JetBrains Warns of GitHub Plugin that Exposes Access Tokens appeared first on GBHackers on Security | #1 Globally Trusted Cyber Security News …
access access tokens accounts attackers authentication compromise critical critical vulnerability cve cve-2024 cve-2024-37051 exploit exposed factor github github plugin issue jetbrains linked accounts linux malware malicious patch plugin pull requests requests steal tokens vulnerability