Teamcity CVEs and Security Vulnerabilities

Filtered by vendor Jetbrains Subscriptions

Filtered by product Teamcity Subscriptions

Search

Switch to Advanced Search (Beta)

Total 209 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2024-31135	1 Jetbrains	1 Teamcity	2024-11-21	6.1 Medium
In JetBrains TeamCity before 2024.03 open redirect was possible on the login page
CVE-2024-24942	1 Jetbrains	1 Teamcity	2024-11-21	5.3 Medium
In JetBrains TeamCity before 2023.11.3 path traversal allowed reading data within JAR archives
CVE-2024-24938	1 Jetbrains	1 Teamcity	2024-11-21	5.3 Medium
In JetBrains TeamCity before 2023.11.2 limited directory traversal was possible in the Kotlin DSL documentation
CVE-2024-24937	1 Jetbrains	1 Teamcity	2024-11-21	4.6 Medium
In JetBrains TeamCity before 2023.11.2 stored XSS via agent distribution was possible
CVE-2024-24936	1 Jetbrains	1 Teamcity	2024-11-21	4.3 Medium
In JetBrains TeamCity before 2023.11.2 access control at the S3 Artifact Storage plugin endpoint was missed
CVE-2024-23917	1 Jetbrains	1 Teamcity	2024-11-21	9.8 Critical
In JetBrains TeamCity before 2023.11.3 authentication bypass leading to RCE was possible
CVE-2023-50870	1 Jetbrains	1 Teamcity	2024-11-21	4.3 Medium
In JetBrains TeamCity before 2023.11.1 a CSRF on login was possible
CVE-2023-43566	1 Jetbrains	1 Teamcity	2024-11-21	3.5 Low
In JetBrains TeamCity before 2023.05.4 stored XSS was possible during nodes configuration
CVE-2023-41250	1 Jetbrains	1 Teamcity	2024-11-21	3.5 Low
In JetBrains TeamCity before 2023.05.3 reflected XSS was possible during user registration
CVE-2023-41249	1 Jetbrains	1 Teamcity	2024-11-21	4.6 Medium
In JetBrains TeamCity before 2023.05.3 reflected XSS was possible during copying Build Step
CVE-2023-41248	1 Jetbrains	1 Teamcity	2024-11-21	4.6 Medium
In JetBrains TeamCity before 2023.05.3 stored XSS was possible during Cloud Profiles configuration
CVE-2023-39175	1 Jetbrains	1 Teamcity	2024-11-21	4.6 Medium
In JetBrains TeamCity before 2023.05.2 reflected XSS via GitHub integration was possible
CVE-2023-39174	1 Jetbrains	1 Teamcity	2024-11-21	4.3 Medium
In JetBrains TeamCity before 2023.05.2 a ReDoS attack was possible via integration with issue trackers
CVE-2023-39173	1 Jetbrains	1 Teamcity	2024-11-21	5.4 Medium
In JetBrains TeamCity before 2023.05.2 a token with limited permissions could be used to gain full account access
CVE-2023-38067	1 Jetbrains	1 Teamcity	2024-11-21	4.3 Medium
In JetBrains TeamCity before 2023.05.1 build parameters of the "password" type could be written to the agent log
CVE-2023-38066	1 Jetbrains	1 Teamcity	2024-11-21	4.6 Medium
In JetBrains TeamCity before 2023.05.1 reflected XSS via the Referer header was possible during artifact downloads
CVE-2023-38065	1 Jetbrains	1 Teamcity	2024-11-21	4.6 Medium
In JetBrains TeamCity before 2023.05.1 stored XSS while viewing the build log was possible
CVE-2023-38064	1 Jetbrains	1 Teamcity	2024-11-21	4.3 Medium
In JetBrains TeamCity before 2023.05.1 build chain parameters of the "password" type could be written to the agent log
CVE-2023-38063	1 Jetbrains	1 Teamcity	2024-11-21	4.6 Medium
In JetBrains TeamCity before 2023.05.1 stored XSS while running custom builds was possible
CVE-2023-38062	1 Jetbrains	1 Teamcity	2024-11-21	4.3 Medium
In JetBrains TeamCity before 2023.05.1 parameters of the "password" type could be shown in the UI in certain composite build configurations

« first previous Page 5 of 11. next last »