Jetbrains: Security Vulnerabilities
In JetBrains TeamCity before 2023.05.6 reflected XSS on the subscriptions page was possible
CVSS Score
4.6
EPSS Score
0.059
Published
2024-05-29
In JetBrains TeamCity before 2024.03.2 several stored XSS in untrusted builds settings were possible
CVSS Score
4.6
EPSS Score
0.245
Published
2024-05-29
In JetBrains TeamCity before 2024.03.2 stored XSS via build step settings was possible
CVSS Score
4.6
EPSS Score
0.169
Published
2024-05-29
In JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5 an XSS could be executed via certain report grouping and filtering operations
CVSS Score
5.4
EPSS Score
0.155
Published
2024-05-29
In JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5 stored XSS via third-party reports was possible
CVSS Score
4.6
EPSS Score
0.099
Published
2024-05-29
In JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5 reflected XSS via OAuth provider configuration was possible
CVSS Score
4.6
EPSS Score
0.005
Published
2024-05-29
In JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5 stored XSS via issue tracker integration was possible
CVSS Score
4.6
EPSS Score
0.356
Published
2024-05-29
In JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5, 2024.03.2 path traversal allowing to read files from server was possible
CVSS Score
6.5
EPSS Score
0.0
Published
2024-05-29
In JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5 several Stored XSS in code inspection reports were possible
CVSS Score
4.6
EPSS Score
0.356
Published
2024-05-29
In JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5 improper access control in Pull Requests and Commit status publisher build features was possible
CVSS Score
6.5
EPSS Score
0.0
Published
2024-05-29