Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jetbrains teamcity vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv2
CVE-2021-25775
In JetBrains TeamCity prior to 2020.2.1, the server admin could create and see access tokens for any other users.
Jetbrains Teamcity
5
CVSSv2
CVE-2022-25264
In JetBrains TeamCity prior to 2021.2.3, environment variables of the "password" type could be logged in some cases.
Jetbrains Teamcity
5
CVSSv2
CVE-2022-24332
In JetBrains TeamCity prior to 2021.2, a logout action didn't remove a Remember Me cookie.
Jetbrains Teamcity
5
CVSSv2
CVE-2022-24334
In JetBrains TeamCity prior to 2021.2.1, the Agent Push feature allowed selection of any private key on the server.
Jetbrains Teamcity
5
CVSSv2
CVE-2022-24341
In JetBrains TeamCity prior to 2021.2.1, editing a user account to change its password didn't terminate sessions of the edited user.
Jetbrains Teamcity
5
CVSSv2
CVE-2022-24336
In JetBrains TeamCity prior to 2021.2.1, an unauthenticated attacker can cancel running builds via an XML-RPC request to the TeamCity server.
Jetbrains Teamcity
5
CVSSv2
CVE-2021-43199
In JetBrains TeamCity prior to 2021.1.2, permission checks in the Create Patch functionality are insufficient.
Jetbrains Teamcity
5
CVSSv2
CVE-2021-43194
In JetBrains TeamCity prior to 2021.1.2, user enumeration was possible.
Jetbrains Teamcity
5
CVSSv2
CVE-2021-43195
In JetBrains TeamCity prior to 2021.1.2, some HTTP security headers were missing.
Jetbrains Teamcity
5
CVSSv2
CVE-2021-43196
In JetBrains TeamCity prior to 2021.1, information disclosure via the Docker Registry connection dialog is possible.
Jetbrains Teamcity
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »