CVE-2022-29817

Name of the Vulnerable Software and Affected Versions JetBrains IntelliJ IDEA versions prior to 2022.1

Description The issue allows for reflected XSS via error messages in the internal web server. This means an attacker could potentially inject malicious code into the error messages, which would then be executed by the user's browser. The estimated number of potentially affected devices worldwide is not specified.

Recommendations For versions prior to 2022.1, update to version 2022.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the internal web server to minimize the risk of exploitation.