Skip to main content

JetBrains PyCharm CVE-2026-49384

| EUVDEUVD-2026-33392 MEDIUM
Cross-site Scripting (XSS) (CWE-79)
2026-05-29 JetBrains GHSA-94rv-v2wh-r9wx
6.1
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
6.1 MEDIUM
AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Changed
Confidentiality
Low
Integrity
Low
Availability
None

Lifecycle Timeline

2
Patch available
May 29, 2026 - 20:02 EUVD
Analysis Generated
May 29, 2026 - 18:56 vuln.today

DescriptionCVE.org

In JetBrains PyCharm before 2025.3.4 stored XSS in Jupyter notebook Markdown cells was possible

AnalysisAI

Stored XSS in JetBrains PyCharm's Jupyter notebook Markdown cell renderer allows a remote, unauthenticated attacker to execute arbitrary JavaScript in the context of a victim's PyCharm session by delivering a crafted notebook file. All PyCharm versions prior to 2025.3.4 are affected. The vulnerability carries no KEV listing and no public exploit has been identified at time of analysis, though the low attack complexity and lack of required privileges make opportunistic abuse via shared or repository-hosted notebooks plausible.

Technical ContextAI

PyCharm renders Jupyter notebook (.ipynb) files natively within its IDE environment, including Markdown cells that support HTML and JavaScript. CWE-79 (Improper Neutralization of Input During Web Page Generation - Cross-Site Scripting) indicates that user-controlled content in Markdown cells is not adequately sanitized before being rendered in PyCharm's embedded browser or notebook viewer. The CVSS Scope:Changed attribute confirms that malicious script execution can affect resources or contexts beyond the immediate PyCharm component - consistent with how stored XSS in notebook renderers can reach browser storage, local tokens, or cross-origin contexts depending on the runtime sandbox. The affected CPE is cpe:2.3:a:jetbrains:pycharm:*:*:*:*:*:*:*:*, covering all PyCharm editions (Community and Professional) prior to the patched release.

RemediationAI

Upgrade JetBrains PyCharm to version 2025.3.4 or later, which contains the vendor-released patch as confirmed by the JetBrains security advisory at https://www.jetbrains.com/privacy-security/issues-fixed/. No workaround version details beyond 2025.3.4 are provided in the source data. As a compensating control prior to patching, avoid opening Jupyter notebooks from untrusted sources - this eliminates the stored payload delivery vector. Teams using PyCharm in collaborative or CI-adjacent workflows should restrict which notebooks are auto-opened and enforce code review of .ipynb files in version control, as Markdown cell content is not typically audited for script injection. Disabling Jupyter notebook preview rendering within PyCharm (if togglable via settings) would mitigate exposure at the cost of losing in-IDE notebook visualization.

Share

CVE-2026-49384 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy