Search Results (Refine Search)
- Keyword (text search): cpe:2.3:a:jetbrains:teamcity:2022.10.3:*:*:*:*:*:*:*
- CPE Name Search: true
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2024-47951 |
In JetBrains TeamCity before 2024.07.3 stored XSS was possible via server global settings Published: October 08, 2024; 12:15:13 PM -0400 |
V4.0:(not available) V3.1: 5.4 MEDIUM V2.0:(not available) |
CVE-2024-47950 |
In JetBrains TeamCity before 2024.07.3 stored XSS was possible in Backup configuration settings Published: October 08, 2024; 12:15:12 PM -0400 |
V4.0:(not available) V3.1: 5.4 MEDIUM V2.0:(not available) |
CVE-2024-47949 |
In JetBrains TeamCity before 2024.07.3 path traversal allowed backup file write to arbitrary location Published: October 08, 2024; 12:15:12 PM -0400 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0:(not available) |
CVE-2024-47948 |
In JetBrains TeamCity before 2024.07.3 path traversal leading to information disclosure was possible via server backups Published: October 08, 2024; 12:15:12 PM -0400 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0:(not available) |
CVE-2024-47161 |
In JetBrains TeamCity before 2024.07.3 password could be exposed via Sonar runner REST API Published: October 08, 2024; 12:15:12 PM -0400 |
V4.0:(not available) V3.1: 6.5 MEDIUM V2.0:(not available) |
CVE-2024-43810 |
In JetBrains TeamCity before 2024.07.1 reflected XSS was possible in the AWS Core plugin Published: August 16, 2024; 11:15:29 AM -0400 |
V4.0:(not available) V3.1: 5.4 MEDIUM V2.0:(not available) |
CVE-2024-43809 |
In JetBrains TeamCity before 2024.07.1 reflected XSS was possible on the agentPushPreset page Published: August 16, 2024; 11:15:29 AM -0400 |
V4.0:(not available) V3.1: 6.1 MEDIUM V2.0:(not available) |
CVE-2024-43808 |
In JetBrains TeamCity before 2024.07.1 self XSS was possible in the HashiCorp Vault plugin Published: August 16, 2024; 11:15:29 AM -0400 |
V4.0:(not available) V3.1: 5.4 MEDIUM V2.0:(not available) |
CVE-2024-43807 |
In JetBrains TeamCity before 2024.07.1 multiple stored XSS was possible on Clouds page Published: August 16, 2024; 11:15:29 AM -0400 |
V4.0:(not available) V3.1: 5.4 MEDIUM V2.0:(not available) |
CVE-2024-43114 |
In JetBrains TeamCity before 2024.07.1 possible privilege escalation due to incorrect directory permissions Published: August 06, 2024; 9:15:56 AM -0400 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0:(not available) |
CVE-2024-41829 |
In JetBrains TeamCity before 2024.07 an OAuth code for JetBrains Space could be stolen via Space Application connection Published: July 22, 2024; 11:15:05 AM -0400 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0:(not available) |
CVE-2024-41828 |
In JetBrains TeamCity before 2024.07 comparison of authorization tokens took non-constant time Published: July 22, 2024; 11:15:05 AM -0400 |
V4.0:(not available) V3.1: 6.5 MEDIUM V2.0:(not available) |
CVE-2024-41827 |
In JetBrains TeamCity before 2024.07 access tokens could continue working after deletion or expiration Published: July 22, 2024; 11:15:05 AM -0400 |
V4.0:(not available) V3.1: 9.8 CRITICAL V2.0:(not available) |
CVE-2024-41826 |
In JetBrains TeamCity before 2024.07 stored XSS was possible on Show Connection page Published: July 22, 2024; 11:15:04 AM -0400 |
V4.0:(not available) V3.1: 4.8 MEDIUM V2.0:(not available) |
CVE-2024-41825 |
In JetBrains TeamCity before 2024.07 stored XSS was possible on the Code Inspection tab Published: July 22, 2024; 11:15:04 AM -0400 |
V4.0:(not available) V3.1: 5.4 MEDIUM V2.0:(not available) |
CVE-2024-41824 |
In JetBrains TeamCity before 2024.07 parameters of the "password" type could leak into the build log in some specific cases Published: July 22, 2024; 11:15:04 AM -0400 |
V4.0:(not available) V3.1: 6.5 MEDIUM V2.0:(not available) |
CVE-2024-39879 |
In JetBrains TeamCity before 2024.03.3 application token could be exposed in EC2 Cloud Profile settings Published: July 01, 2024; 1:15:09 PM -0400 |
V4.0:(not available) V3.1: 5.3 MEDIUM V2.0:(not available) |
CVE-2024-39878 |
In JetBrains TeamCity before 2024.03.3 private key could be exposed via testing GitHub App Connection Published: July 01, 2024; 1:15:09 PM -0400 |
V4.0:(not available) V3.1: 5.3 MEDIUM V2.0:(not available) |
CVE-2024-31138 |
In JetBrains TeamCity before 2024.03 xSS was possible via Agent Distribution settings Published: March 28, 2024; 11:15:47 AM -0400 |
V4.0:(not available) V3.1: 5.4 MEDIUM V2.0:(not available) |
CVE-2024-31137 |
In JetBrains TeamCity before 2024.03 reflected XSS was possible via Space connection configuration Published: March 28, 2024; 11:15:47 AM -0400 |
V4.0:(not available) V3.1: 6.1 MEDIUM V2.0:(not available) |