CVE-2022-46827 Information

Description

In JetBrains IntelliJ IDEA before 2022.3 an XXE attack leading to SSRF via requests to custom plugin repositories was possible.

Reference

https://www.jetbrains.com/privacy-security/issues-fixed/