Jetbrains: Security Vulnerabilities
In JetBrains TeamCity before 2025.03.2 stored XSS via YouTrack integration was possible
CVSS Score
4.8
EPSS Score
0.0
Published
2025-05-20
In JetBrains TeamCity before 2025.03.2 stored XSS via Jira integration was possible
CVSS Score
4.8
EPSS Score
0.0
Published
2025-05-20
In JetBrains TeamCity before 2025.03.2 open redirect was possible on editing VCS Root page
CVSS Score
4.3
EPSS Score
0.0
Published
2025-05-20
In JetBrains YouTrack before 2025.1.76253 deletion of issues was possible due to missing permission checks in API
CVSS Score
7.7
EPSS Score
0.0
Published
2025-05-20
In JetBrains YouTrack before 2025.1.74704 restricted attachments could become visible after issue cloning
CVSS Score
4.3
EPSS Score
0.0
Published
2025-05-20
In JetBrains TeamCity before 2025.03.1 base64-encoded credentials could be exposed in build logs
CVSS Score
4.3
EPSS Score
0.0
Published
2025-04-25
In JetBrains TeamCity before 2025.03.1 improper path validation in loggingPreset parameter was possible
CVSS Score
4.9
EPSS Score
0.0
Published
2025-04-25
In JetBrains TeamCity before 2025.03.1 stored XSS was possible on Data Directory tab
CVSS Score
3.5
EPSS Score
0.0
Published
2025-04-25
In JetBrains Rider before 2025.1.2 custom archive unpacker allowed arbitrary file overwrite during remote debug session
CVSS Score
5.4
EPSS Score
0.0
Published
2025-04-25
In JetBrains Toolbox App before 2.6 the SSH plugin established connections without sufficient user confirmation
CVSS Score
6.1
EPSS Score
0.0
Published
2025-04-17