Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jetbrains teamcity vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2019-15848
JetBrains TeamCity 2019.1 and 2019.1.1 allows cross-site scripting (XSS), potentially making it possible to send an arbitrary HTTP request to a TeamCity server under the name of the currently logged-in user.
Jetbrains Teamcity 2019.1
Jetbrains Teamcity 2019.1.1
10
CVSSv2
CVE-2019-12157
In JetBrains UpSource versions prior to 2018.2 build 1293, there is credential disclosure via RPC commands.
Jetbrains Upsource 2018.2
Jetbrains Teamcity
Jetbrains Upsource
5
CVSSv2
CVE-2019-18363
In JetBrains TeamCity prior to 2019.1.2, access could be gained to the history of builds of a deleted build configuration under some circumstances.
Jetbrains Teamcity
7.5
CVSSv2
CVE-2019-18364
In JetBrains TeamCity prior to 2019.1.4, insecure Java Deserialization could potentially allow remote code execution.
Jetbrains Teamcity
5
CVSSv2
CVE-2019-18367
In JetBrains TeamCity prior to 2019.1.2, a non-destructive operation could be performed by a user without the corresponding permissions.
Jetbrains Teamcity
NA
CVE-2022-46830
In JetBrains TeamCity between 2022.10 and 2022.10.1 a custom STS endpoint allowed internal port scanning.
Jetbrains Teamcity
NA
CVE-2022-46831
In JetBrains TeamCity between 2022.10 and 2022.10.1 connecting to AWS using the "Default Credential Provider Chain" allowed TeamCity project administrators to access AWS resources normally limited to TeamCity system administrators.
Jetbrains Teamcity
4
CVSSv2
CVE-2020-15826
In JetBrains TeamCity prior to 2020.1, users are able to assign more permissions than they have.
Jetbrains Teamcity
4
CVSSv2
CVE-2020-15828
In JetBrains TeamCity prior to 2020.1.1, project parameter values can be retrieved by a user without appropriate permissions.
Jetbrains Teamcity
4.3
CVSSv2
CVE-2020-15830
JetBrains TeamCity prior to 2019.2.3 is vulnerable to stored XSS in the administration UI.
Jetbrains Teamcity
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22460
CVE-2024-4646
CVE-2024-29212
IMAP
CVE-2023-36672
CVE-2024-34547
command injection
CVE-2024-4651
stored XSS
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »