Search Results | AttackerKB

Show filters

Topics 211 Users 9,714

Clear All

Disclosure Date

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

211 Total Results

Displaying 151-160 of 211

Attacker Value

Unknown

CVE-2021-31913

Disclosure Date: May 11, 2021 (last updated February 22, 2025)

In JetBrains TeamCity before 2020.2.3, insufficient checks of the redirect_uri were made during GitHub SSO token exchange.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2021-31912

Disclosure Date: May 11, 2021 (last updated February 22, 2025)

In JetBrains TeamCity before 2020.2.3, account takeover was potentially possible during a password reset.

Attack Vector: Network Privileges: None User Interaction: Required

0

Attacker Value

Unknown

CVE-2021-31911

Disclosure Date: May 11, 2021 (last updated February 22, 2025)

In JetBrains TeamCity before 2020.2.3, reflected XSS was possible on several pages.

Attack Vector: Network Privileges: None User Interaction: Required

0

Attacker Value

Unknown

CVE-2021-31910

Disclosure Date: May 11, 2021 (last updated February 22, 2025)

In JetBrains TeamCity before 2020.2.3, information disclosure via SSRF was possible.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2021-31914

Disclosure Date: May 11, 2021 (last updated November 28, 2024)

In JetBrains TeamCity before 2020.2.4 on Windows, arbitrary code execution on TeamCity Server was possible.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2021-31915

Disclosure Date: May 11, 2021 (last updated February 22, 2025)

In JetBrains TeamCity before 2020.2.4, OS command injection leading to remote code execution was possible.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2021-31906

Disclosure Date: May 11, 2021 (last updated November 28, 2024)

In JetBrains TeamCity before 2020.2.2, audit logs were not sufficient when an administrator uploaded a file.

Attack Vector: Network Privileges: High User Interaction: None

0

Attacker Value

Unknown

CVE-2021-26309

Disclosure Date: May 11, 2021 (last updated February 22, 2025)

Information disclosure in the TeamCity plugin for IntelliJ before 2020.2.2.85899 was possible because a local temporary file had Insecure Permissions.

Attack Vector: Local Privileges: Low User Interaction: None

0

Attacker Value

Unknown

CVE-2021-26310

Disclosure Date: May 11, 2021 (last updated November 28, 2024)

In the TeamCity IntelliJ plugin before 2020.2.2.85899, DoS was possible.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2021-31904

Disclosure Date: May 11, 2021 (last updated February 22, 2025)

In JetBrains TeamCity before 2020.2.2, XSS was potentially possible on the test history page.

Attack Vector: Network Privileges: None User Interaction: Required

0