Lucene search
JetBrainsCVELIST:CVE-2024-31134HistoryMar 28, 2024 - 3:07 p.m.
CVE-2024-31134
2024-03-2815:07:14
JetBrains
www.cve.org
cve-2024-31134
jetbrains teamcity
user registration
vulnerability
self-registration disabled
authenticated users
administrative permissions
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
6.7 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
In JetBrains TeamCity before 2024.03 authenticated users without administrative permissions could register other users when self-registration was disabled
CNA Affected
[
{
"vendor": "JetBrains",
"product": "TeamCity",
"versions": [
{
"version": "0",
"status": "affected",
"lessThan": "2024.03",
"versionType": "semver"
}
],
"defaultStatus": "unaffected"
}
]Related
vulnrichment
vulnrichment
CVE-2024-31134
2024-03-28 15:07:14
nvd
nvd
CVE-2024-31134
2024-03-28 15:15:46
cve
cve
CVE-2024-31134
2024-03-28 15:15:46
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
6.7 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
Related for CVELIST:CVE-2024-31134