Show filters
211 Total Results
Displaying 1-10 of 211
Sort by:
Attacker Value
Very High
CVE-2023-42793
Disclosure Date: September 19, 2023 (last updated December 18, 2024)
In JetBrains TeamCity before 2023.05.4 authentication bypass leading to RCE on TeamCity Server was possible
7
Attacker Value
Very High
CVE-2024-27198
Disclosure Date: March 04, 2024 (last updated March 06, 2024)
In JetBrains TeamCity before 2023.11.4 authentication bypass allowing to perform admin actions was possible
5
Attacker Value
Moderate
CVE-2024-27199
Disclosure Date: March 04, 2024 (last updated December 18, 2024)
In JetBrains TeamCity before 2023.11.4 path traversal allowing to perform limited admin actions was possible
3
Attacker Value
Very Low
CVE-2024-24942
Disclosure Date: February 06, 2024 (last updated February 09, 2024)
In JetBrains TeamCity before 2023.11.3 path traversal allowed reading data within JAR archives
2
Attacker Value
Unknown
CVE-2024-23917
Disclosure Date: February 06, 2024 (last updated February 09, 2024)
In JetBrains TeamCity before 2023.11.3 authentication bypass leading to RCE was possible
1
Attacker Value
Unknown
CVE-2025-26493
Disclosure Date: February 11, 2025 (last updated February 12, 2025)
In JetBrains TeamCity before 2024.12.2 several DOM-based XSS were possible on the Code Inspection Report tab
0
Attacker Value
Unknown
CVE-2025-26492
Disclosure Date: February 11, 2025 (last updated February 12, 2025)
In JetBrains TeamCity before 2024.12.2 improper Kubernetes connection settings could expose sensitive resources
0
Attacker Value
Unknown
CVE-2025-24461
Disclosure Date: January 21, 2025 (last updated January 31, 2025)
In JetBrains TeamCity before 2024.12.1 decryption of connection secrets without proper permissions was possible via Test Connection endpoint
0
Attacker Value
Unknown
CVE-2025-24460
Disclosure Date: January 21, 2025 (last updated January 31, 2025)
In JetBrains TeamCity before 2024.12.1 improper access control allowed to see Projects’ names in the agent pool
0
Attacker Value
Unknown
CVE-2025-24459
Disclosure Date: January 21, 2025 (last updated January 31, 2025)
In JetBrains TeamCity before 2024.12.1 reflected XSS was possible on the Vault Connection page
0
