Jetbrains: >> Teamcity Security Vulnerabilities
In JetBrains TeamCity before 2024.07.3 password could be exposed via Sonar runner REST API
CVSS Score
4.3
EPSS Score
0.0
Published
2024-10-08
In JetBrains TeamCity before 2024.07.3 path traversal leading to information disclosure was possible via server backups
CVSS Score
4.9
EPSS Score
0.0
Published
2024-10-08
In JetBrains TeamCity before 2024.07.3 path traversal allowed backup file write to arbitrary location
CVSS Score
4.9
EPSS Score
0.0
Published
2024-10-08
In JetBrains TeamCity before 2024.07.3 stored XSS was possible in Backup configuration settings
CVSS Score
3.5
EPSS Score
0.001
Published
2024-10-08
In JetBrains TeamCity before 2024.07.1 multiple stored XSS was possible on Clouds page
CVSS Score
4.6
EPSS Score
0.137
Published
2024-08-16
In JetBrains TeamCity before 2024.07.1 self XSS was possible in the HashiCorp Vault plugin
CVSS Score
3.7
EPSS Score
0.025
Published
2024-08-16
In JetBrains TeamCity before 2024.07.1 reflected XSS was possible on the agentPushPreset page
CVSS Score
3.5
EPSS Score
0.001
Published
2024-08-16
In JetBrains TeamCity before 2024.07.1 reflected XSS was possible in the AWS Core plugin
CVSS Score
4.6
EPSS Score
0.332
Published
2024-08-16
In JetBrains TeamCity before 2024.07.1 possible privilege escalation due to incorrect directory permissions
CVSS Score
7.5
EPSS Score
0.0
Published
2024-08-06
In JetBrains TeamCity before 2024.07 access tokens could continue working after deletion or expiration
CVSS Score
7.4
EPSS Score
0.0
Published
2024-07-22