MEDIUM✓ PATCH🇵🇱 Wersja polska

CVE-2025-43016

CVSS 5.4v3.1pub. 2025-04-25upd. 2025-10-01

In JetBrains Rider before 2025.1.2 custom archive unpacker allowed arbitrary file overwrite during remote debug session

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
  • Jetbrains Rider

    APP
    Jetbrains
    < 2025.1.2
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
CWE
References

Related vulnerabilities

CVE-2024-37051CRITICAL9.3PL ✓ten sam produkt

Wyciek tokenu GitHub do stron trzecich w JetBrains IDE

CVE-2025-23385HIGH7.8ten sam produkt

In JetBrains ReSharper before 2024.3.4, 2024.2.8, and 2024.1.7, Rider before 2024.3.4, 2024.2.8, and 2024.1.7,...

CVE-2020-7906HIGH7.5ten sam produkt

In JetBrains Rider versions 2019.3 EAP2 through 2019.3 EAP7, there were unsigned binaries provided by the Wind...

CVE-2019-14960HIGH7.8ten sam produkt

JetBrains Rider before 2019.1.2 was using an unsigned JetBrains.Rider.Unity.Editor.Plugin.Repacked.dll file.

CVE-2025-64457MEDIUM4.2ten sam produkt

In JetBrains ReSharper, Rider and dotTrace before 2025.2.5 local privilege escalation was possible via race co...