Jetbrains: >> Teamcity >> 2019.1.2 Security Vulnerabilities
CVE-2023-42793
In JetBrains TeamCity before 2023.05.4 authentication bypass leading to RCE on TeamCity Server was possible
Known exploited
CVSS Score
9.8
EPSS Score
0.929
Published
2023-09-19
In JetBrains TeamCity before 2023.05.4 stored XSS was possible during nodes configuration
CVSS Score
3.5
EPSS Score
0.0
Published
2023-09-19
In JetBrains TeamCity before 2023.05.3 stored XSS was possible during Cloud Profiles configuration
CVSS Score
4.6
EPSS Score
0.0
Published
2023-08-25
In JetBrains TeamCity before 2023.05.3 reflected XSS was possible during copying Build Step
CVSS Score
4.6
EPSS Score
0.031
Published
2023-08-25
In JetBrains TeamCity before 2023.05.3 reflected XSS was possible during user registration
CVSS Score
3.5
EPSS Score
0.0
Published
2023-08-25
In JetBrains TeamCity before 2023.05.2 a token with limited permissions could be used to gain full account access
CVSS Score
5.4
EPSS Score
0.0
Published
2023-07-25
In JetBrains TeamCity before 2023.05.2 a ReDoS attack was possible via integration with issue trackers
CVSS Score
4.3
EPSS Score
0.0
Published
2023-07-25
In JetBrains TeamCity before 2023.05.2 reflected XSS via GitHub integration was possible
CVSS Score
4.6
EPSS Score
0.0
Published
2023-07-25
In JetBrains TeamCity before 2023.05.1 stored XSS when using a custom theme was possible
CVSS Score
4.6
EPSS Score
0.001
Published
2023-07-12
In JetBrains TeamCity before 2023.05.1 parameters of the "password" type could be shown in the UI in certain composite build configurations
CVSS Score
4.3
EPSS Score
0.0
Published
2023-07-12