Show filters
211 Total Results
Displaying 181-190 of 211
Sort by:
Attacker Value
Unknown

CVE-2020-15828

Disclosure Date: August 08, 2020 (last updated November 28, 2024)
In JetBrains TeamCity before 2020.1.1, project parameter values can be retrieved by a user without appropriate permissions.
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2020-11938

Disclosure Date: April 22, 2020 (last updated November 27, 2024)
In JetBrains TeamCity 2018.2 through 2019.2.1, a project administrator was able to see scrambled password parameters used in a project. The issue was resolved in 2019.2.2.
Attack Vector: NetworkPrivileges: HighUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2020-11686

Disclosure Date: April 22, 2020 (last updated November 27, 2024)
In JetBrains TeamCity before 2019.1.4, a project administrator was able to retrieve some TeamCity server settings.
Attack Vector: NetworkPrivileges: HighUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2020-11687

Disclosure Date: April 22, 2020 (last updated February 21, 2025)
In JetBrains TeamCity before 2019.2.2, password values were shown in an unmasked format on several pages.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2020-11688

Disclosure Date: April 22, 2020 (last updated February 21, 2025)
In JetBrains TeamCity before 2019.2.1, the application state is kept alive after a user ends his session.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2020-11689

Disclosure Date: April 22, 2020 (last updated February 21, 2025)
In JetBrains TeamCity before 2019.2.1, a user without appropriate permissions was able to import settings from the settings.kts file.
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2020-7909

Disclosure Date: January 30, 2020 (last updated February 21, 2025)
In JetBrains TeamCity before 2019.1.5, some server-stored passwords could be shown via the web UI.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2020-7911

Disclosure Date: January 30, 2020 (last updated February 21, 2025)
In JetBrains TeamCity before 2019.2, several user-level pages were vulnerable to XSS.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2020-7908

Disclosure Date: January 30, 2020 (last updated February 21, 2025)
In JetBrains TeamCity before 2019.1.5, reverse tabnabbing was possible on several pages.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2020-7910

Disclosure Date: January 30, 2020 (last updated February 21, 2025)
JetBrains TeamCity before 2019.2 was vulnerable to a stored XSS attack by a user with the developer role.
Attack Vector: NetworkPrivileges: LowUser Interaction: Required
0
0
View More Topics  < Previous  Next >