Lucene search
China National Vulnerability DatabaseCNVD-2022-15948HistoryMar 01, 2022 - 12:00 a.m.
JetBrains TeamCity Elevation of Privilege Vulnerability (CNVD-2022-15948)
2022-03-0100:00:00
China National Vulnerability Database
www.cnvd.org.cn
8
0.002 Low
EPSS
Percentile
60.5%
JetBrains TeamCity is a distributed build management and continuous integration tool from JetBrains Czech Republic. The tool provides continuous unit testing, code quality analysis, and build issue analysis reports.JetBrains TeamCity is vulnerable to a code issue vulnerability that is caused by a Time to Check/Time to Use (TOCTOU) contention condition in the agent registration component. By sending a carefully crafted XML-RPC request, an attacker could exploit this vulnerability to gain elevated privileges.
| CPE | Name | Operator | Version |
|---|---|---|---|
| jetbrains teamcity | lt | 2021.2 |
Related
cve
cve
CVE-2022-24335
2022-02-25 15:15:10
nvd
nvd
CVE-2022-24335
2022-02-25 15:15:10
prion
prion
Race condition
2022-02-25 15:15:00
cvelist
cvelist
CVE-2022-24335
2022-02-25 14:35:21
jetbrains
jetbrains
JetBrains Security Bulletin Q4 2021
2022-02-08 00:00:00