Lucene search
JetBrainsCVELIST:CVE-2024-36362HistoryMay 29, 2024 - 1:28 p.m.
CVE-2024-36362
2024-05-2913:28:57
JetBrains
www.cve.org
6
cve-2024-36362
jetbrains teamcity
path traversal
server
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
0.0004 Low
EPSS
Percentile
9.1%
In JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5, 2024.03.2 path traversal allowing to read files from server was possible
CNA Affected
[
{
"vendor": "JetBrains",
"product": "TeamCity",
"versions": [
{
"version": "0",
"status": "affected",
"lessThan": "2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5, 2024.03.2",
"versionType": "semver"
}
],
"defaultStatus": "unaffected"
}
]Related
nvd
nvd
CVE-2024-36362
2024-05-29 14:15:22
cve
cve
CVE-2024-36362
2024-05-29 14:15:22
nessus
nessus
TeamCity Server Multiple Vulnerabilities (CVE-2024-36362 / CVE-2024-36365)
2024-05-31 00:00:00
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
0.0004 Low
EPSS
Percentile
9.1%
Related for CVELIST:CVE-2024-36362