{"id":27482,"date":"2025-05-08T10:00:18","date_gmt":"2025-05-08T08:00:18","guid":{"rendered":"https:\/\/tinextadefence.it\/?p=27482"},"modified":"2025-06-10T10:02:50","modified_gmt":"2025-06-10T08:02:50","slug":"jetbrains-cve-2025-23385-vulnerability-analysis-report","status":"publish","type":"post","link":"https:\/\/tinextadefence.it\/en\/jetbrains-cve-2025-23385-vulnerability-analysis-report\/","title":{"rendered":"JetBrains: CVE-2025-23385 - Vulnerability Analysis Report"},"content":{"rendered":"<p><span data-contrast=\"auto\">Our <\/span><b><span data-contrast=\"auto\">Malware Lab<\/span><\/b><span data-contrast=\"auto\"> identified two vulnerabilities <\/span><b><span data-contrast=\"auto\">Local Privilege Escalation (LPE)<\/span><\/b><span data-contrast=\"auto\"> within the service <\/span><b><span data-contrast=\"auto\">JetBrains ETW Host Service<\/span><\/b><span data-contrast=\"auto\">.<\/span><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335557856&quot;:16777215,&quot;335559739&quot;:0,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">The component concerned, JetBrains.Etw.Collector.Host.exe, is part of the suite of development tools <\/span><b><span data-contrast=\"auto\">JetBrains dotTrace<\/span><\/b><span data-contrast=\"auto\">used for analysing the performance of applications. This binary could be installed automatically via the<\/span><b><span data-contrast=\"auto\">unified JetBrains installer<\/span><\/b><span data-contrast=\"auto\"> and is also potentially used by other debugging components distributed with the same suite.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">The vulnerabilities were communicated privately to JetBrains via their official reporting channel.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">The company handled the report promptly and resolved the reported issues.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">Both vulnerabilities were assigned the identifier <\/span><b><span data-contrast=\"auto\">CVE-2025-23385<\/span><\/b><span data-contrast=\"auto\">.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/p>\n<p><span class=\"TextRun SCXW253887921 BCX0\" lang=\"IT-IT\" xml:lang=\"IT-IT\" data-contrast=\"none\"><span class=\"NormalTextRun SCXW253887921 BCX0\">If you wish to learn more, here is the link to our <\/span><\/span><a href=\"https:\/\/tinextadefence.it\/wp-content\/uploads\/2025\/05\/Report_Vulnerabilita_Jetbrains.pdf\"><span class=\"TextRun SCXW253887921 BCX0\" lang=\"IT-IT\" xml:lang=\"IT-IT\" data-contrast=\"none\"><span class=\"NormalTextRun SCXW253887921 BCX0\">full report<\/span><\/span><\/a><span class=\"TextRun SCXW253887921 BCX0\" lang=\"IT-IT\" xml:lang=\"IT-IT\" data-contrast=\"none\"><span class=\"NormalTextRun SCXW253887921 BCX0\">.<\/span><\/span><span class=\"TextRun SCXW253887921 BCX0\" lang=\"IT-IT\" xml:lang=\"IT-IT\" data-contrast=\"none\"><span class=\"NormalTextRun SCXW253887921 BCX0\">\u00a0<\/span><\/span><\/p>\n<p><span data-contrast=\"none\">In addition, you can subscribe to the specific mailing list <b>Cyber Studios by Tinexta Defence<\/b>, to receive updates on upcoming research: <\/span><a href=\"https:\/\/tinextadefence.it\/en\/cyber-studios-mailing-list\/\"><span data-contrast=\"none\">https:\/\/tinextadefence.it\/mailing-list-cyber-studios\/<\/span><\/a><\/p>","protected":false},"excerpt":{"rendered":"<p>Our Malware Lab identified two Local Privilege Escalation (LPE) vulnerabilities within the JetBrains ETW Host Service.  The affected component, JetBrains.Etw.Collector.Host.exe, is part of the JetBrains dotTrace suite of development tools used for application performance analysis. This binary could be installed automatically via the JetBrains unified installer and is [...]<\/p>","protected":false},"author":7,"featured_media":27484,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[102],"tags":[],"class_list":["post-27482","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-tinextadefencebusiness"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v25.8 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>JetBrains: CVE-2025-23385 - Vulnerability Analysis Report - Tinexta Defence<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/tinextadefence.it\/en\/jetbrains-cve-2025-23385-vulnerability-analysis-report\/\" \/>\n<meta property=\"og:locale\" content=\"en_GB\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"JetBrains: CVE-2025-23385 - Vulnerability Analysis Report - Tinexta Defence\" \/>\n<meta property=\"og:description\" content=\"Il nostro Malware Lab ha identificato due vulnerabilit\u00e0 di tipo Local Privilege Escalation (LPE) all\u2019interno del servizio JetBrains ETW Host Service.\u00a0 Il componente interessato, JetBrains.Etw.Collector.Host.exe, \u00e8 parte della suite di strumenti di sviluppo JetBrains dotTrace, utilizzata per l\u2019analisi delle prestazioni delle applicazioni. Tale binario potrebbe essere installato automaticamente tramite l\u2019installer unificato di JetBrains ed \u00e8 [&hellip;]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/tinextadefence.it\/en\/jetbrains-cve-2025-23385-vulnerability-analysis-report\/\" \/>\n<meta property=\"og:site_name\" content=\"Tinexta Defence\" \/>\n<meta property=\"article:published_time\" content=\"2025-05-08T08:00:18+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-06-10T08:02:50+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/tinextadefence.it\/wp-content\/uploads\/2025\/05\/Business_evidenza.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1800\" \/>\n\t<meta property=\"og:image:height\" content=\"960\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Federica Casadei\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Federica Casadei\" \/>\n\t<meta name=\"twitter:label2\" content=\"Estimated reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"1 minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/tinextadefence.it\/jetbrains-cve-2025-23385-vulnerability-analysis-report\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/tinextadefence.it\/jetbrains-cve-2025-23385-vulnerability-analysis-report\/\"},\"author\":{\"name\":\"Federica Casadei\",\"@id\":\"https:\/\/tinextadefence.it\/#\/schema\/person\/0dc89f3eeaa8cd7b7c354b61c84d164d\"},\"headline\":\"JetBrains: CVE-2025-23385 &#8211; Vulnerability Analysis Report\",\"datePublished\":\"2025-05-08T08:00:18+00:00\",\"dateModified\":\"2025-06-10T08:02:50+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/tinextadefence.it\/jetbrains-cve-2025-23385-vulnerability-analysis-report\/\"},\"wordCount\":150,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/tinextadefence.it\/#organization\"},\"image\":{\"@id\":\"https:\/\/tinextadefence.it\/jetbrains-cve-2025-23385-vulnerability-analysis-report\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/tinextadefence.it\/wp-content\/uploads\/2025\/05\/Business_evidenza.jpg\",\"articleSection\":[\"#TDefenceBusiness\"],\"inLanguage\":\"en-GB\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/tinextadefence.it\/jetbrains-cve-2025-23385-vulnerability-analysis-report\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/tinextadefence.it\/jetbrains-cve-2025-23385-vulnerability-analysis-report\/\",\"url\":\"https:\/\/tinextadefence.it\/jetbrains-cve-2025-23385-vulnerability-analysis-report\/\",\"name\":\"JetBrains: CVE-2025-23385 - Vulnerability Analysis Report - Tinexta Defence\",\"isPartOf\":{\"@id\":\"https:\/\/tinextadefence.it\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/tinextadefence.it\/jetbrains-cve-2025-23385-vulnerability-analysis-report\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/tinextadefence.it\/jetbrains-cve-2025-23385-vulnerability-analysis-report\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/tinextadefence.it\/wp-content\/uploads\/2025\/05\/Business_evidenza.jpg\",\"datePublished\":\"2025-05-08T08:00:18+00:00\",\"dateModified\":\"2025-06-10T08:02:50+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/tinextadefence.it\/jetbrains-cve-2025-23385-vulnerability-analysis-report\/#breadcrumb\"},\"inLanguage\":\"en-GB\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/tinextadefence.it\/jetbrains-cve-2025-23385-vulnerability-analysis-report\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-GB\",\"@id\":\"https:\/\/tinextadefence.it\/jetbrains-cve-2025-23385-vulnerability-analysis-report\/#primaryimage\",\"url\":\"https:\/\/tinextadefence.it\/wp-content\/uploads\/2025\/05\/Business_evidenza.jpg\",\"contentUrl\":\"https:\/\/tinextadefence.it\/wp-content\/uploads\/2025\/05\/Business_evidenza.jpg\",\"width\":1800,\"height\":960},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/tinextadefence.it\/jetbrains-cve-2025-23385-vulnerability-analysis-report\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/tinextadefence.it\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"JetBrains: CVE-2025-23385 &#8211; Vulnerability Analysis Report\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/tinextadefence.it\/#website\",\"url\":\"https:\/\/tinextadefence.it\/\",\"name\":\"Tinexta Defence\",\"description\":\"think next, protect now\",\"publisher\":{\"@id\":\"https:\/\/tinextadefence.it\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/tinextadefence.it\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-GB\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/tinextadefence.it\/#organization\",\"name\":\"Tinexta Defence\",\"url\":\"https:\/\/tinextadefence.it\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-GB\",\"@id\":\"https:\/\/tinextadefence.it\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/tinextadefence.it\/wp-content\/uploads\/2025\/03\/Tinexta_Defence_marchio.png\",\"contentUrl\":\"https:\/\/tinextadefence.it\/wp-content\/uploads\/2025\/03\/Tinexta_Defence_marchio.png\",\"width\":2000,\"height\":990,\"caption\":\"Tinexta Defence\"},\"image\":{\"@id\":\"https:\/\/tinextadefence.it\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/tinextadefence.it\/#\/schema\/person\/0dc89f3eeaa8cd7b7c354b61c84d164d\",\"name\":\"Federica Casadei\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-GB\",\"@id\":\"https:\/\/tinextadefence.it\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/6b35becb35fb83a681c7b431c36de302b4101b5ef0c48984910308c04617428f?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/6b35becb35fb83a681c7b431c36de302b4101b5ef0c48984910308c04617428f?s=96&d=mm&r=g\",\"caption\":\"Federica Casadei\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"JetBrains: CVE-2025-23385 - Vulnerability Analysis Report - Tinexta Defence","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/tinextadefence.it\/en\/jetbrains-cve-2025-23385-vulnerability-analysis-report\/","og_locale":"en_GB","og_type":"article","og_title":"JetBrains: CVE-2025-23385 - Vulnerability Analysis Report - Tinexta Defence","og_description":"Il nostro Malware Lab ha identificato due vulnerabilit\u00e0 di tipo Local Privilege Escalation (LPE) all\u2019interno del servizio JetBrains ETW Host Service.\u00a0 Il componente interessato, JetBrains.Etw.Collector.Host.exe, \u00e8 parte della suite di strumenti di sviluppo JetBrains dotTrace, utilizzata per l\u2019analisi delle prestazioni delle applicazioni. Tale binario potrebbe essere installato automaticamente tramite l\u2019installer unificato di JetBrains ed \u00e8 [&hellip;]","og_url":"https:\/\/tinextadefence.it\/en\/jetbrains-cve-2025-23385-vulnerability-analysis-report\/","og_site_name":"Tinexta Defence","article_published_time":"2025-05-08T08:00:18+00:00","article_modified_time":"2025-06-10T08:02:50+00:00","og_image":[{"width":1800,"height":960,"url":"https:\/\/tinextadefence.it\/wp-content\/uploads\/2025\/05\/Business_evidenza.jpg","type":"image\/jpeg"}],"author":"Federica Casadei","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Federica Casadei","Estimated reading time":"1 minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/tinextadefence.it\/jetbrains-cve-2025-23385-vulnerability-analysis-report\/#article","isPartOf":{"@id":"https:\/\/tinextadefence.it\/jetbrains-cve-2025-23385-vulnerability-analysis-report\/"},"author":{"name":"Federica Casadei","@id":"https:\/\/tinextadefence.it\/#\/schema\/person\/0dc89f3eeaa8cd7b7c354b61c84d164d"},"headline":"JetBrains: CVE-2025-23385 &#8211; Vulnerability Analysis Report","datePublished":"2025-05-08T08:00:18+00:00","dateModified":"2025-06-10T08:02:50+00:00","mainEntityOfPage":{"@id":"https:\/\/tinextadefence.it\/jetbrains-cve-2025-23385-vulnerability-analysis-report\/"},"wordCount":150,"commentCount":0,"publisher":{"@id":"https:\/\/tinextadefence.it\/#organization"},"image":{"@id":"https:\/\/tinextadefence.it\/jetbrains-cve-2025-23385-vulnerability-analysis-report\/#primaryimage"},"thumbnailUrl":"https:\/\/tinextadefence.it\/wp-content\/uploads\/2025\/05\/Business_evidenza.jpg","articleSection":["#TDefenceBusiness"],"inLanguage":"en-GB","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/tinextadefence.it\/jetbrains-cve-2025-23385-vulnerability-analysis-report\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/tinextadefence.it\/jetbrains-cve-2025-23385-vulnerability-analysis-report\/","url":"https:\/\/tinextadefence.it\/jetbrains-cve-2025-23385-vulnerability-analysis-report\/","name":"JetBrains: CVE-2025-23385 - Vulnerability Analysis Report - Tinexta Defence","isPartOf":{"@id":"https:\/\/tinextadefence.it\/#website"},"primaryImageOfPage":{"@id":"https:\/\/tinextadefence.it\/jetbrains-cve-2025-23385-vulnerability-analysis-report\/#primaryimage"},"image":{"@id":"https:\/\/tinextadefence.it\/jetbrains-cve-2025-23385-vulnerability-analysis-report\/#primaryimage"},"thumbnailUrl":"https:\/\/tinextadefence.it\/wp-content\/uploads\/2025\/05\/Business_evidenza.jpg","datePublished":"2025-05-08T08:00:18+00:00","dateModified":"2025-06-10T08:02:50+00:00","breadcrumb":{"@id":"https:\/\/tinextadefence.it\/jetbrains-cve-2025-23385-vulnerability-analysis-report\/#breadcrumb"},"inLanguage":"en-GB","potentialAction":[{"@type":"ReadAction","target":["https:\/\/tinextadefence.it\/jetbrains-cve-2025-23385-vulnerability-analysis-report\/"]}]},{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/tinextadefence.it\/jetbrains-cve-2025-23385-vulnerability-analysis-report\/#primaryimage","url":"https:\/\/tinextadefence.it\/wp-content\/uploads\/2025\/05\/Business_evidenza.jpg","contentUrl":"https:\/\/tinextadefence.it\/wp-content\/uploads\/2025\/05\/Business_evidenza.jpg","width":1800,"height":960},{"@type":"BreadcrumbList","@id":"https:\/\/tinextadefence.it\/jetbrains-cve-2025-23385-vulnerability-analysis-report\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/tinextadefence.it\/"},{"@type":"ListItem","position":2,"name":"JetBrains: CVE-2025-23385 &#8211; Vulnerability Analysis Report"}]},{"@type":"WebSite","@id":"https:\/\/tinextadefence.it\/#website","url":"https:\/\/tinextadefence.it\/","name":"Tinexta Defence","description":"think next, protect now","publisher":{"@id":"https:\/\/tinextadefence.it\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/tinextadefence.it\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-GB"},{"@type":"Organization","@id":"https:\/\/tinextadefence.it\/#organization","name":"Tinexta Defence","url":"https:\/\/tinextadefence.it\/","logo":{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/tinextadefence.it\/#\/schema\/logo\/image\/","url":"https:\/\/tinextadefence.it\/wp-content\/uploads\/2025\/03\/Tinexta_Defence_marchio.png","contentUrl":"https:\/\/tinextadefence.it\/wp-content\/uploads\/2025\/03\/Tinexta_Defence_marchio.png","width":2000,"height":990,"caption":"Tinexta Defence"},"image":{"@id":"https:\/\/tinextadefence.it\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/tinextadefence.it\/#\/schema\/person\/0dc89f3eeaa8cd7b7c354b61c84d164d","name":"Federica Casadei","image":{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/tinextadefence.it\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/6b35becb35fb83a681c7b431c36de302b4101b5ef0c48984910308c04617428f?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/6b35becb35fb83a681c7b431c36de302b4101b5ef0c48984910308c04617428f?s=96&d=mm&r=g","caption":"Federica Casadei"}}]}},"_links":{"self":[{"href":"https:\/\/tinextadefence.it\/en\/wp-json\/wp\/v2\/posts\/27482","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/tinextadefence.it\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/tinextadefence.it\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/tinextadefence.it\/en\/wp-json\/wp\/v2\/users\/7"}],"replies":[{"embeddable":true,"href":"https:\/\/tinextadefence.it\/en\/wp-json\/wp\/v2\/comments?post=27482"}],"version-history":[{"count":0,"href":"https:\/\/tinextadefence.it\/en\/wp-json\/wp\/v2\/posts\/27482\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/tinextadefence.it\/en\/wp-json\/wp\/v2\/media\/27484"}],"wp:attachment":[{"href":"https:\/\/tinextadefence.it\/en\/wp-json\/wp\/v2\/media?parent=27482"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/tinextadefence.it\/en\/wp-json\/wp\/v2\/categories?post=27482"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/tinextadefence.it\/en\/wp-json\/wp\/v2\/tags?post=27482"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}