Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
teamcity vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2022-25263
JetBrains TeamCity prior to 2021.2.3 was vulnerable to OS command injection in the Agent Push feature configuration.
Jetbrains Teamcity
5
CVSSv2
CVE-2022-25264
In JetBrains TeamCity prior to 2021.2.3, environment variables of the "password" type could be logged in some cases.
Jetbrains Teamcity
4
CVSSv2
CVE-2022-24337
In JetBrains TeamCity prior to 2021.2, health items of pull requests were shown to users who lacked appropriate permissions.
Jetbrains Teamcity
3.5
CVSSv2
CVE-2022-24339
JetBrains TeamCity prior to 2021.2.1 was vulnerable to stored XSS.
Jetbrains Teamcity
6.8
CVSSv2
CVE-2022-24342
In JetBrains TeamCity prior to 2021.2.1, URL injection leading to CSRF was possible.
Jetbrains Teamcity
1 Github repository
5.8
CVSSv2
CVE-2022-24330
In JetBrains TeamCity prior to 2021.2.1, a redirection to an external site was possible.
Jetbrains Teamcity
7.5
CVSSv2
CVE-2022-24331
In JetBrains TeamCity prior to 2021.1.4, GitLab authentication impersonation was possible.
Jetbrains Teamcity
5
CVSSv2
CVE-2022-24332
In JetBrains TeamCity prior to 2021.2, a logout action didn't remove a Remember Me cookie.
Jetbrains Teamcity
4
CVSSv2
CVE-2022-24333
In JetBrains TeamCity prior to 2021.2, blind SSRF via an XML-RPC call was possible.
Jetbrains Teamcity
5
CVSSv2
CVE-2022-24334
In JetBrains TeamCity prior to 2021.2.1, the Agent Push feature allowed selection of any private key on the server.
Jetbrains Teamcity
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »