Show filters
211 Total Results
Displaying 111-120 of 211
Sort by:
Attacker Value
Unknown

CVE-2022-44622

Disclosure Date: November 03, 2022 (last updated February 24, 2025)
In JetBrains TeamCity version between 2021.2 and 2022.10 access permissions for secure token health items were excessive
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2022-40979

Disclosure Date: September 23, 2022 (last updated February 24, 2025)
In JetBrains TeamCity before 2022.04.4 environmental variables of "password" type could be logged when using custom Perforce executable
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2022-38133

Disclosure Date: August 10, 2022 (last updated February 24, 2025)
In JetBrains TeamCity before 2022.04.3 the private SSH key could be written to the server log in some cases
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2022-36322

Disclosure Date: July 20, 2022 (last updated February 24, 2025)
In JetBrains TeamCity before 2022.04.2 build parameter injection was possible
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2022-36321

Disclosure Date: July 20, 2022 (last updated February 24, 2025)
In JetBrains TeamCity before 2022.04.2 the private SSH key could be written to the build log in some cases
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2022-29929

Disclosure Date: May 12, 2022 (last updated February 23, 2025)
In JetBrains TeamCity before 2022.04 potential XSS via Referrer header was possible
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2022-29928

Disclosure Date: May 12, 2022 (last updated February 23, 2025)
In JetBrains TeamCity before 2022.04 leak of secrets in TeamCity agent logs was possible
Attack Vector: NetworkPrivileges: HighUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2022-29927

Disclosure Date: May 12, 2022 (last updated February 23, 2025)
In JetBrains TeamCity before 2022.04 reflected XSS on the Build Chain Status page was possible
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2022-25264

Disclosure Date: February 25, 2022 (last updated February 23, 2025)
In JetBrains TeamCity before 2021.2.3, environment variables of the "password" type could be logged in some cases.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2022-25263

Disclosure Date: February 25, 2022 (last updated February 23, 2025)
JetBrains TeamCity before 2021.2.3 was vulnerable to OS command injection in the Agent Push feature configuration.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
View More Topics  < Previous  Next >