CVE-2022-48432: 
JetBrains IntelliJ IDEA vulnerability analysis and mitigation

In JetBrains IntelliJ IDEA before version 2023.1, a security vulnerability was identified where the bundled version of Chromium wasn't properly sandboxed. This vulnerability was assigned CVE-2022-48432 and was disclosed on March 29, 2023 (CVE Mitre).

The vulnerability has been assigned a CVSS v3.1 Base Score of 8.8 (High), with the following vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H. The vulnerability characteristics include Local Attack Vector, Low Attack Complexity, Low Privileges Required, No User Interaction, Changed Scope, and High impact on Confidentiality, Integrity, and Availability (AttackerKB).

The vulnerability's impact is rated as High across all three main security aspects - Confidentiality, Integrity, and Availability. With a CVSS impact score of 6.0, the vulnerability could potentially allow an attacker to compromise the security boundaries provided by the Chromium sandbox (AttackerKB).

The vulnerability has been fixed in JetBrains IntelliJ IDEA version 2023.1. Users are advised to upgrade to this version or later to mitigate the vulnerability (JetBrains Security).