Lucene search
China National Vulnerability DatabaseCNVD-2022-15944HistoryMar 01, 2022 - 12:00 a.m.
JetBrains TeamCity XML External Entity Handling Vulnerability
2022-03-0100:00:00
China National Vulnerability Database
www.cnvd.org.cn
4
0.002 Low
EPSS
Percentile
59.9%
JetBrains TeamCity is a distributed build management and continuous integration tool from JetBrains Czech Republic. The tool provides continuous unit testing, code quality analysis, and build issue analysis reporting.A security vulnerability exists in JetBrains TeamCity, which stems from the product’s failure to properly parse configuration files. An attacker could use this vulnerability to read arbitrary files, cause a denial of service, perform an SSRF attack, perform a port scan from the perspective of the machine on which the parser resides, or achieve other system impact.
| CPE | Name | Operator | Version |
|---|---|---|---|
| jetbrains teamcity | lt | 2021.2.1 |
Related
cve
cve
CVE-2022-24340
2022-02-25 15:15:10
prion
prion
Code injection
2022-02-25 15:15:00
cvelist
cvelist
CVE-2022-24340
2022-02-25 14:35:41
nvd
nvd
CVE-2022-24340
2022-02-25 15:15:10
jetbrains
jetbrains
JetBrains Security Bulletin Q4 2021
2022-02-08 00:00:00