Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
teamcity vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-35302
In JetBrains TeamCity prior to 2023.11 stored XSS during restore from backup was possible
NA
CVE-2024-31134
In JetBrains TeamCity prior to 2024.03 authenticated users without administrative permissions could register other users when self-registration was disabled
6.1
CVSSv3
CVE-2024-31135
In JetBrains TeamCity prior to 2024.03 open redirect was possible on the login page
Jetbrains Teamcity
NA
CVE-2024-31136
In JetBrains TeamCity prior to 2024.03 2FA could be bypassed by providing a special URL parameter
6.1
CVSSv3
CVE-2024-31137
In JetBrains TeamCity prior to 2024.03 reflected XSS was possible via Space connection configuration
Jetbrains Teamcity
5.4
CVSSv3
CVE-2024-31138
In JetBrains TeamCity prior to 2024.03 xSS was possible via Agent Distribution settings
Jetbrains Teamcity
NA
CVE-2024-31139
In JetBrains TeamCity prior to 2024.03 xXE was possible in the Maven build steps detector
NA
CVE-2024-31140
In JetBrains TeamCity prior to 2024.03 server administrators could remove arbitrary files from the server by installing tools
NA
CVE-2024-29880
In JetBrains TeamCity prior to 2023.11 users with access to the agent machine might obtain permissions of the user running the agent process
NA
CVE_2024_27198
This module exploits an authentication bypass vulnerability in JetBrains TeamCity. An unauthenticated attacker can leverage this to access the REST API and create a new administrator access token. This token can be used to upload a plugin which contains a Meta...
1 Metasploit module
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »