Show filters
211 Total Results
Displaying 161-170 of 211
Sort by:
Attacker Value
Unknown

CVE-2021-3315

Disclosure Date: May 11, 2021 (last updated February 22, 2025)
In JetBrains TeamCity before 2020.2.2, stored XSS on a tests page was possible.
Attack Vector: NetworkPrivileges: LowUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2021-31907

Disclosure Date: May 11, 2021 (last updated February 22, 2025)
In JetBrains TeamCity before 2020.2.2, permission checks for changing TeamCity plugins were implemented improperly.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2021-31909

Disclosure Date: May 11, 2021 (last updated February 22, 2025)
In JetBrains TeamCity before 2020.2.3, argument injection leading to remote code execution was possible.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2021-31908

Disclosure Date: May 11, 2021 (last updated February 22, 2025)
In JetBrains TeamCity before 2020.2.3, stored XSS was possible on several pages.
Attack Vector: NetworkPrivileges: LowUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2021-25775

Disclosure Date: February 03, 2021 (last updated November 28, 2024)
In JetBrains TeamCity before 2020.2.1, the server admin could create and see access tokens for any other users.
Attack Vector: NetworkPrivileges: HighUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2021-25778

Disclosure Date: February 03, 2021 (last updated February 22, 2025)
In JetBrains TeamCity before 2020.2.1, permissions during user deletion were checked improperly.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2021-25773

Disclosure Date: February 03, 2021 (last updated February 22, 2025)
JetBrains TeamCity before 2020.2 was vulnerable to reflected XSS on several pages.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2021-25774

Disclosure Date: February 03, 2021 (last updated February 22, 2025)
In JetBrains TeamCity before 2020.2.1, a user could get access to the GitHub access token of another user.
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2021-25776

Disclosure Date: February 03, 2021 (last updated February 22, 2025)
In JetBrains TeamCity before 2020.2, an ECR token could be exposed in a build's parameters.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2020-35667

Disclosure Date: February 03, 2021 (last updated February 22, 2025)
JetBrains TeamCity Plugin before 2020.2.85695 SSRF. Vulnerability that could potentially expose user credentials.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
View More Topics  < Previous  Next >