Lucene search
JetBrainsCVE-2024-41829HistoryJul 22, 2024 - 3:15 p.m.
CVE-2024-41829
2024-07-2215:15:05
CWE-303
CWE-287
JetBrains
web.nvd.nist.gov
29
jetbrains teamcity
oauth code theft
jetbrains space
connection
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
7.2
Confidence
Low
EPSS
0.001
Percentile
37.7%
In JetBrains TeamCity before 2024.07 an OAuth code for JetBrains Space could be stolen via Space Application connection
Affected configurations
Node
jetbrainsteamcityRange<2024.07
CNA Affected
[
{
"vendor": "JetBrains",
"product": "TeamCity",
"versions": [
{
"version": "0",
"status": "affected",
"lessThan": "2024.07",
"versionType": "semver"
}
],
"defaultStatus": "unaffected"
}
]Related
nvd
nvd
CVE-2024-41829
2024-07-22 15:15:05
vulnrichment
vulnrichment
CVE-2024-41829
2024-07-22 14:50:24
cvelist
cvelist
CVE-2024-41829
2024-07-22 14:50:24
nessus
nessus
TeamCity Server < 2024.7 Multiple Vulnerabilities
2024-07-25 00:00:00
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
7.2
Confidence
Low
EPSS
0.001
Percentile
37.7%
Related for CVE-2024-41829