Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
teamcity vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2023-34226
In JetBrains TeamCity prior to 2023.05 reflected XSS in the Subscriptions page was possible
Jetbrains Teamcity
7.5
CVSSv3
CVE-2023-34227
In JetBrains TeamCity prior to 2023.05 a specific endpoint was vulnerable to brute force attacks
Jetbrains Teamcity
6.5
CVSSv3
CVE-2023-34228
In JetBrains TeamCity prior to 2023.05 authentication checks were missing – 2FA was not checked for some sensitive account actions
Jetbrains Teamcity
5.4
CVSSv3
CVE-2023-34229
In JetBrains TeamCity prior to 2023.05 stored XSS in GitLab Connection page was possible
Jetbrains Teamcity
5.3
CVSSv3
CVE-2022-46830
In JetBrains TeamCity between 2022.10 and 2022.10.1 a custom STS endpoint allowed internal port scanning.
Jetbrains Teamcity
4.9
CVSSv3
CVE-2022-46831
In JetBrains TeamCity between 2022.10 and 2022.10.1 connecting to AWS using the "Default Credential Provider Chain" allowed TeamCity project administrators to access AWS resources normally limited to TeamCity system administrators.
Jetbrains Teamcity
8.8
CVSSv3
CVE-2023-39173
In JetBrains TeamCity prior to 2023.05.2 a token with limited permissions could be used to gain full account access
Jetbrains Teamcity
7.5
CVSSv3
CVE-2023-39174
In JetBrains TeamCity prior to 2023.05.2 a ReDoS attack was possible via integration with issue trackers
Jetbrains Teamcity
6.1
CVSSv3
CVE-2023-39175
In JetBrains TeamCity prior to 2023.05.2 reflected XSS via GitHub integration was possible
Jetbrains Teamcity
9.8
CVSSv3
CVE-2023-42793
In JetBrains TeamCity prior to 2023.05.4 authentication bypass leading to RCE on TeamCity Server was possible
Jetbrains Teamcity
1 Metasploit module
13 Github repositories
2 Articles
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »