Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
teamcity vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2020-11687
In JetBrains TeamCity prior to 2019.2.2, password values were shown in an unmasked format on several pages.
Jetbrains Teamcity
5
CVSSv2
CVE-2020-11688
In JetBrains TeamCity prior to 2019.2.1, the application state is kept alive after a user ends his session.
Jetbrains Teamcity
4
CVSSv2
CVE-2020-11689
In JetBrains TeamCity prior to 2019.2.1, a user without appropriate permissions was able to import settings from the settings.kts file.
Jetbrains Teamcity
7.5
CVSSv2
CVE-2021-43193
In JetBrains TeamCity prior to 2021.1.2, remote code execution via the agent push functionality is possible.
Jetbrains Teamcity
5
CVSSv2
CVE-2021-43194
In JetBrains TeamCity prior to 2021.1.2, user enumeration was possible.
Jetbrains Teamcity
5
CVSSv2
CVE-2021-43195
In JetBrains TeamCity prior to 2021.1.2, some HTTP security headers were missing.
Jetbrains Teamcity
5
CVSSv2
CVE-2021-43196
In JetBrains TeamCity prior to 2021.1, information disclosure via the Docker Registry connection dialog is possible.
Jetbrains Teamcity
4.3
CVSSv2
CVE-2021-43197
In JetBrains TeamCity prior to 2021.1.2, email notifications could include unescaped HTML for XSS.
Jetbrains Teamcity
3.5
CVSSv2
CVE-2021-43198
In JetBrains TeamCity prior to 2021.1.2, stored XSS is possible.
Jetbrains Teamcity
7.5
CVSSv2
CVE-2021-43200
In JetBrains TeamCity prior to 2021.1.2, permission checks in the Agent Push functionality were insufficient.
Jetbrains Teamcity
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »