Platform
jetbrains
Component
intellij-idea
Fixed in
2022.2
CVE-2022-37009 describes a local code execution vulnerability affecting JetBrains IntelliJ IDEA versions up to and including 2022.2. This vulnerability allows an attacker to execute arbitrary code on the system by exploiting a flaw related to the processing of Vagrant executables. The vulnerability has been resolved in version 2022.2, and users are strongly advised to upgrade.
The primary impact of CVE-2022-37009 is the potential for local code execution. An attacker who can trick a user into running a malicious Vagrant executable within the IntelliJ IDEA environment can gain control of the user's machine. This could lead to data theft, system compromise, and further malicious activity. The attack requires user interaction – specifically, the user must execute the crafted Vagrant file. Successful exploitation could allow an attacker to install malware, steal sensitive data, or pivot to other systems on the network, depending on the user's privileges and the environment's configuration.
CVE-2022-37009 was publicly disclosed on July 28, 2022. The vulnerability has a LOW CVSS score, indicating a relatively low probability of exploitation. No public proof-of-concept (PoC) code has been widely reported, but the potential for exploitation exists given the nature of the vulnerability. It is not currently listed on the CISA KEV catalog.
Exploit Status
EPSS
0.00% (0% percentile)
CVSS Vector
The primary mitigation for CVE-2022-37009 is to upgrade to IntelliJ IDEA version 2022.2 or later. This version includes a fix that addresses the vulnerability. If upgrading is not immediately possible, exercise extreme caution when opening or executing Vagrant files, especially those from untrusted sources. Consider temporarily disabling Vagrant integration within IntelliJ IDEA if it's not essential. There are no specific WAF or proxy rules that can directly mitigate this vulnerability, as it's a local code execution issue.
Update IntelliJ IDEA to version 2022.2 or later. This will resolve the local code execution vulnerability via a Vagrant executable.
Vulnerability analysis and critical alerts directly to your inbox.
CVE-2022-37009 is a local code execution vulnerability in IntelliJ IDEA versions up to 2022.2, allowing attackers to execute code via a malicious Vagrant executable.
You are affected if you are using IntelliJ IDEA version 2022.2 or earlier and utilize Vagrant for development environments.
Upgrade to IntelliJ IDEA version 2022.2 or later to resolve the vulnerability. Exercise caution when handling Vagrant files from untrusted sources.
While no widespread exploitation has been confirmed, the potential for exploitation exists, and users should upgrade promptly.
Refer to the JetBrains security advisory for detailed information: https://www.jetbrains.com/security/advisories/CVE-2022-37009/
Upload your dependency file and we'll tell you instantly if this and other CVEs hit you.