Jetbrains: >> Teamcity >> 9.1.2 Security Vulnerabilities
In JetBrains TeamCity version before 2022.10, Password parameters could be exposed in the build log if they contained special characters
CVSS Score
6.5
EPSS Score
0.0
Published
2022-11-03
In JetBrains TeamCity version before 2022.10, Project Viewer could see scrambled secure values in the MetaRunner settings
CVSS Score
6.5
EPSS Score
0.0
Published
2022-11-03
In JetBrains TeamCity before 2022.04.4 environmental variables of "password" type could be logged when using custom Perforce executable
CVSS Score
4.4
EPSS Score
0.0
Published
2022-09-23
In JetBrains TeamCity before 2022.04.3 the private SSH key could be written to the server log in some cases
CVSS Score
3.2
EPSS Score
0.0
Published
2022-08-10
In JetBrains TeamCity before 2022.04.2 the private SSH key could be written to the build log in some cases
CVSS Score
4.1
EPSS Score
0.0
Published
2022-07-20
In JetBrains TeamCity before 2022.04.2 build parameter injection was possible
CVSS Score
5.4
EPSS Score
0.0
Published
2022-07-20
In JetBrains TeamCity before 2022.04 reflected XSS on the Build Chain Status page was possible
CVSS Score
4.6
EPSS Score
0.0
Published
2022-05-12
In JetBrains TeamCity before 2022.04 leak of secrets in TeamCity agent logs was possible
CVSS Score
4.4
EPSS Score
0.0
Published
2022-05-12
In JetBrains TeamCity before 2022.04 potential XSS via Referrer header was possible
CVSS Score
3.7
EPSS Score
0.0
Published
2022-05-12
JetBrains TeamCity before 2021.2.2 was vulnerable to reflected XSS.
CVSS Score
6.1
EPSS Score
0.0
Published
2022-02-25