The host is installed with JetBrains IntelliJ IDEA before 2023.1 and is prone to an insufficiently protected credentials vulnerability. A flaw is present in the application, which fails to properly handle issues in unspecified vectors. On successful exploitation, the NTLM hash could leak through an API method used in the IntelliJ IDEA built-in web server.