Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jetbrains teamcity vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2021-25776
In JetBrains TeamCity prior to 2020.2, an ECR token could be exposed in a build's parameters.
Jetbrains Teamcity
5.3
CVSSv3
CVE-2021-25777
In JetBrains TeamCity prior to 2020.2.1, permissions during token removal were checked improperly.
Jetbrains Teamcity
5.3
CVSSv3
CVE-2021-25778
In JetBrains TeamCity prior to 2020.2.1, permissions during user deletion were checked improperly.
Jetbrains Teamcity
9.8
CVSSv3
CVE-2022-24331
In JetBrains TeamCity prior to 2021.1.4, GitLab authentication impersonation was possible.
Jetbrains Teamcity
5.3
CVSSv3
CVE-2022-24332
In JetBrains TeamCity prior to 2021.2, a logout action didn't remove a Remember Me cookie.
Jetbrains Teamcity
6.5
CVSSv3
CVE-2022-24333
In JetBrains TeamCity prior to 2021.2, blind SSRF via an XML-RPC call was possible.
Jetbrains Teamcity
8.1
CVSSv3
CVE-2022-24335
JetBrains TeamCity prior to 2021.2 was vulnerable to a Time-of-check/Time-of-use (TOCTOU) race-condition attack in agent registration via XML-RPC.
Jetbrains Teamcity
5.3
CVSSv3
CVE-2022-24336
In JetBrains TeamCity prior to 2021.2.1, an unauthenticated attacker can cancel running builds via an XML-RPC request to the TeamCity server.
Jetbrains Teamcity
6.1
CVSSv3
CVE-2022-24338
JetBrains TeamCity prior to 2021.2.1 was vulnerable to reflected XSS.
Jetbrains Teamcity
9.8
CVSSv3
CVE-2022-24340
In JetBrains TeamCity prior to 2021.2.1, XXE during the parsing of the configuration file was possible.
Jetbrains Teamcity
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »