Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
teamcity vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2022-25263
JetBrains TeamCity prior to 2021.2.3 was vulnerable to OS command injection in the Agent Push feature configuration.
Jetbrains Teamcity
7.5
CVSSv3
CVE-2021-25776
In JetBrains TeamCity prior to 2020.2, an ECR token could be exposed in a build's parameters.
Jetbrains Teamcity
5.4
CVSSv3
CVE-2023-38061
In JetBrains TeamCity prior to 2023.05.1 stored XSS when using a custom theme was possible
Jetbrains Teamcity
6.5
CVSSv3
CVE-2023-38062
In JetBrains TeamCity prior to 2023.05.1 parameters of the "password" type could be shown in the UI in certain composite build configurations
Jetbrains Teamcity
5.4
CVSSv3
CVE-2023-38063
In JetBrains TeamCity prior to 2023.05.1 stored XSS while running custom builds was possible
Jetbrains Teamcity
6.5
CVSSv3
CVE-2023-38064
In JetBrains TeamCity prior to 2023.05.1 build chain parameters of the "password" type could be written to the agent log
Jetbrains Teamcity
5.4
CVSSv3
CVE-2023-38065
In JetBrains TeamCity prior to 2023.05.1 stored XSS while viewing the build log was possible
Jetbrains Teamcity
6.1
CVSSv3
CVE-2023-38066
In JetBrains TeamCity prior to 2023.05.1 reflected XSS via the Referer header was possible during artifact downloads
Jetbrains Teamcity
6.5
CVSSv3
CVE-2023-38067
In JetBrains TeamCity prior to 2023.05.1 build parameters of the "password" type could be written to the agent log
Jetbrains Teamcity
5.4
CVSSv3
CVE-2023-34221
In JetBrains TeamCity prior to 2023.05 stored XSS in the Show Connection page was possible
Jetbrains Teamcity
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2024-34413
CVE-2024-34089
CVE-2024-33408
local
SQL
CVE-2024-0402
CVE-2024-33910
CVE-2024-31848
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »