Show filters
456 Total Results
Displaying 121-130 of 456
Sort by:
Attacker Value
Unknown

CVE-2023-41249

Disclosure Date: August 25, 2023 (last updated October 08, 2023)
In JetBrains TeamCity before 2023.05.3 reflected XSS was possible during copying Build Step
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2023-41248

Disclosure Date: August 25, 2023 (last updated October 08, 2023)
In JetBrains TeamCity before 2023.05.3 stored XSS was possible during Cloud Profiles configuration
Attack Vector: NetworkPrivileges: LowUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2023-39261

Disclosure Date: July 26, 2023 (last updated October 08, 2023)
In JetBrains IntelliJ IDEA before 2023.2 plugin for Space was requesting excessive permissions
Attack Vector: LocalPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2023-39175

Disclosure Date: July 25, 2023 (last updated October 08, 2023)
In JetBrains TeamCity before 2023.05.2 reflected XSS via GitHub integration was possible
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2023-39174

Disclosure Date: July 25, 2023 (last updated October 08, 2023)
In JetBrains TeamCity before 2023.05.2 a ReDoS attack was possible via integration with issue trackers
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2023-39173

Disclosure Date: July 25, 2023 (last updated October 08, 2023)
In JetBrains TeamCity before 2023.05.2 a token with limited permissions could be used to gain full account access
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2023-38069

Disclosure Date: July 12, 2023 (last updated October 08, 2023)
In JetBrains IntelliJ IDEA before 2023.1.4 license dialog could be suppressed in certain cases
Attack Vector: LocalPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2023-38068

Disclosure Date: July 12, 2023 (last updated October 08, 2023)
In JetBrains YouTrack before 2023.1.16597 captcha was not properly validated for Helpdesk forms
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2023-38067

Disclosure Date: July 12, 2023 (last updated October 08, 2023)
In JetBrains TeamCity before 2023.05.1 build parameters of the "password" type could be written to the agent log
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2023-38066

Disclosure Date: July 12, 2023 (last updated October 08, 2023)
In JetBrains TeamCity before 2023.05.1 reflected XSS via the Referer header was possible during artifact downloads
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0
View More Topics  < Previous  Next >