JetBrains TeamCity < 2025.11.2 Multiple Vulnerabilities

🗓️ 19 Dec 2025 00:00:00Reported by TenableType

JetBrains TeamCity before 2025.11.2 may disclose local paths via improper repository URL validation.

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2025-67739	11 Dec 202517:35	–	circl
CNNVD	JetBrains TeamCity 安全漏洞	11 Dec 202500:00	–	cnnvd
CVE	CVE-2025-67739	11 Dec 202515:19	–	cve
Cvelist	CVE-2025-67739	11 Dec 202515:19	–	cvelist
EUVD	EUVD-2025-202697	11 Dec 202518:30	–	euvd
NVD	CVE-2025-67739	11 Dec 202516:16	–	nvd
Positive Technologies	PT-2025-50625	11 Dec 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-67739	12 Dec 202516:00	–	redhatcve
Vulnrichment	CVE-2025-67739	11 Dec 202515:19	–	vulnrichment

Source	Link
jetbrains	www.jetbrains.com/privacy-security/issues-fixed/
cve	www.cve.mitre.org/cgi-bin/cvename.cgi

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(279407);
  script_version("1.3");
  script_set_attribute(attribute:"plugin_modification_date", value:"2026/03/03");

  script_cve_id("CVE-2025-67739");
  script_xref(name:"IAVA", value:"2025-A-0927-S");

  script_name(english:"JetBrains TeamCity < 2025.11.2 Multiple Vulnerabilities");

  script_set_attribute(attribute:"synopsis", value:
"The remote host is missing one or more security updates.");
  script_set_attribute(attribute:"description", value:
"The version of JetBrains TeamCity installed on the remote host is prior to 2025.11.2. It is, therefore, affected by
Improper repository URL validation could lead to local paths disclosure.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://www.jetbrains.com/privacy-security/issues-fixed/");
  script_set_attribute(attribute:"solution", value:
"Upgrade to JetBrains TeamCity version 2025.11.2 or later.");
  script_set_attribute(attribute:"agent", value:"all");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:H/Au:S/C:P/I:N/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2025-67739");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2025/12/11");
  script_set_attribute(attribute:"patch_publication_date", value:"2025/12/11");
  script_set_attribute(attribute:"plugin_publication_date", value:"2025/12/19");

  script_set_attribute(attribute:"plugin_type", value:"combined");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:jetbrains:teamcity");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_set_attribute(attribute:"thorough_tests", value:"true");
  script_set_attribute(attribute:"enable_cgi_scanning", value:"true");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Misc.");

  script_copyright(english:"This script is Copyright (C) 2025-2026 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("jetbrains_teamcity_web_detect.nbin", "jetbrains_teamcity_win_installed.nbin", "jetbrains_teamcity_nix_installed.nbin");
  script_require_keys("installed_sw/JetBrains TeamCity");

  exit(0);
}

include('vdf.inc');

# @tvdl-content
var vuln_data = {
  'metadata': {'spec_version': '1.0'},
  'checks': [
    {
      'product': {'name': 'JetBrains TeamCity', 'type': 'app'},
      'check_algorithm': 'default',
      'constraints' : [
        {'fixed_version': '2025.11.2'}
      ]
    }
  ]
};

var vdf_result = vdf::check_and_report(vuln_data:vuln_data, severity:SECURITY_NOTE);
vdf::handle_check_and_report_errors(vdf_result:vdf_result);

03 Mar 2026 00:00Current

6Medium risk

Vulners AI Score6

CVSS 3.13.1

EPSS0.00001

SSVC