Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jetbrains teamcity vulnerabilities and exploits
(subscribe to this query)
384
VMScore
CVE-2019-15848
JetBrains TeamCity 2019.1 and 2019.1.1 allows cross-site scripting (XSS), potentially making it possible to send an arbitrary HTTP request to a TeamCity server under the name of the currently logged-in user.
Jetbrains Teamcity 2019.1
Jetbrains Teamcity 2019.1.1
890
VMScore
CVE-2019-12157
In JetBrains UpSource versions prior to 2018.2 build 1293, there is credential disclosure via RPC commands.
Jetbrains Upsource 2018.2
Jetbrains Teamcity
Jetbrains Upsource
445
VMScore
CVE-2019-18363
In JetBrains TeamCity prior to 2019.1.2, access could be gained to the history of builds of a deleted build configuration under some circumstances.
Jetbrains Teamcity
668
VMScore
CVE-2019-18364
In JetBrains TeamCity prior to 2019.1.4, insecure Java Deserialization could potentially allow remote code execution.
Jetbrains Teamcity
445
VMScore
CVE-2019-18367
In JetBrains TeamCity prior to 2019.1.2, a non-destructive operation could be performed by a user without the corresponding permissions.
Jetbrains Teamcity
NA
CVE-2022-46830
In JetBrains TeamCity between 2022.10 and 2022.10.1 a custom STS endpoint allowed internal port scanning.
Jetbrains Teamcity
NA
CVE-2022-46831
In JetBrains TeamCity between 2022.10 and 2022.10.1 connecting to AWS using the "Default Credential Provider Chain" allowed TeamCity project administrators to access AWS resources normally limited to TeamCity system administrators.
Jetbrains Teamcity
356
VMScore
CVE-2020-15826
In JetBrains TeamCity prior to 2020.1, users are able to assign more permissions than they have.
Jetbrains Teamcity
356
VMScore
CVE-2020-15828
In JetBrains TeamCity prior to 2020.1.1, project parameter values can be retrieved by a user without appropriate permissions.
Jetbrains Teamcity
383
VMScore
CVE-2020-15830
JetBrains TeamCity prior to 2019.2.3 is vulnerable to stored XSS in the administration UI.
Jetbrains Teamcity
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4654
CVE-2023-49606
encryption
NULL pointer dereference
CVE-2024-4439
CVE-2024-4649
race condition
CVE-2024-27202
CVE-2024-34566
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »