IntelliJ IDEA <2026.1: Template Injection Exec CVE-2026-49382: CVE-2026-49382 May 2026

IntelliJ IDEA <2026.1: Template Injection Exec CVE-2026-49382
CVE-2026-49382 Published on May 29, 2026

In JetBrains IntelliJ IDEA before 2026.1 code execution was possible via template injection in the Copyright plugin

Vulnerability Analysis

CVE-2026-49382 is exploitable with local system access, requires user interaction. This vulnerability is consided to have a high level of attack complexity. The potential impact of an exploit of this vulnerability is considered to be low. considered to have a small impact on confidentiality and integrity and availability.

Attack Vector:

LOCAL

Attack Complexity:

HIGH

Privileges Required:

NONE

User Interaction:

REQUIRED

Scope:

UNCHANGED

Confidentiality Impact:

LOW

Integrity Impact:

LOW

Availability Impact:

LOW

Weakness Type

CWE-1336

Products Associated with CVE-2026-49382

Want to know whenever a new CVE is published for JetBrains Intellij Idea? stack.watch will email you.

Affected Versions

Before 2026.1 is affected.

IntelliJ IDEA <2026.1: Template Injection Exec CVE-2026-49382CVE-2026-49382 Published on May 29, 2026

Vulnerability Analysis

Weakness Type

Products Associated with CVE-2026-49382

Affected Versions

IntelliJ IDEA <2026.1: Template Injection Exec CVE-2026-49382
CVE-2026-49382 Published on May 29, 2026