CVE-2025-43013: In JetBrains Toolbox App before 2.6 unencrypted credential transmission during SSH authentication was possible
6.9
CVSS
Description
In JetBrains Toolbox App before 2.6 unencrypted credential transmission during SSH authentication was possible
Classification
CVE ID: CVE-2025-43013
CVSS Base Severity: MEDIUM
CVSS Base Score: 6.9
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:H/I:L/A:L
Problem Types
CWE-319Affected Products
Vendor: JetBrains
Product: Toolbox App
Exploit Prediction Scoring System (EPSS)
EPSS Score: 0.0% (probability of being exploited)
EPSS Percentile: 0.0% (scored less or equal to compared to others)
EPSS Date: 2025-04-18 (when was this score calculated)
References
https://nvd.nist.gov/vuln/detail/CVE-2025-43013https://www.jetbrains.com/privacy-security/issues-fixed/