PyCharm Community, Professional: Remote code execution

PyCharm Community, Professional: Remote code execution A vulnerability has been found in PyCharm Community and Professional, potentially resulting in arbitrary code execution. pycharm 2021-07-20 2021-07-20 797892 remote 2021.1.2 2021.1.2 2021.1.2 2021.1.2

PyCharm is the Python IDE for professional developers.

Insufficient validation exists within PyCharmâ€™s checks for fetching projects from VCS.

If a victim can be enticed into fetching a VCS project via PyCharm, a remote attacker could achieve remote code execution.

There is no known workaround at this time.

All PyCharm Community users should upgrade to the latest version:


      # emerge --sync
      # emerge --ask --oneshot --verbose
      ">=dev-util/pycharm-community-2021.1.2"

All PyCharm Professional users should upgrade to the latest version:


      # emerge --sync
      # emerge --ask --oneshot --verbose
      ">=dev-util/pycharm-professional-2021.1.2"

CVE-2021-30005 ajak ajak