Lucene search

K

Teamcity Security Vulnerabilities

cve
cve

CVE-2022-24342

In JetBrains TeamCity before 2021.2.1, URL injection leading to CSRF was...

8.8CVSS

8.8AI Score

0.001EPSS

2022-02-25 03:15 PM
66
6
cve
cve

CVE-2022-24331

In JetBrains TeamCity before 2021.1.4, GitLab authentication impersonation was...

9.8CVSS

9.5AI Score

0.002EPSS

2022-02-25 03:15 PM
67
cve
cve

CVE-2022-24330

In JetBrains TeamCity before 2021.2.1, a redirection to an external site was...

6.1CVSS

6.1AI Score

0.001EPSS

2022-02-25 03:15 PM
62
cve
cve

CVE-2021-43202

In JetBrains TeamCity before 2021.1.3, the X-Frame-Options header is missing in some...

9.8CVSS

9.4AI Score

0.002EPSS

2021-11-30 04:15 PM
18
cve
cve

CVE-2021-43201

In JetBrains TeamCity before 2021.1.3, a newly created project could take settings from an already deleted...

5.3CVSS

5.2AI Score

0.001EPSS

2021-11-09 03:15 PM
17
cve
cve

CVE-2021-43195

In JetBrains TeamCity before 2021.1.2, some HTTP security headers were...

5.3CVSS

5.3AI Score

0.001EPSS

2021-11-09 03:15 PM
19
cve
cve

CVE-2021-43199

In JetBrains TeamCity before 2021.1.2, permission checks in the Create Patch functionality are...

5.3CVSS

5.2AI Score

0.001EPSS

2021-11-09 03:15 PM
20
cve
cve

CVE-2021-43193

In JetBrains TeamCity before 2021.1.2, remote code execution via the agent push functionality is...

9.8CVSS

9.7AI Score

0.006EPSS

2021-11-09 03:15 PM
27
cve
cve

CVE-2021-43194

In JetBrains TeamCity before 2021.1.2, user enumeration was...

5.3CVSS

5.3AI Score

0.001EPSS

2021-11-09 03:15 PM
20
cve
cve

CVE-2021-43197

In JetBrains TeamCity before 2021.1.2, email notifications could include unescaped HTML for...

6.1CVSS

6.2AI Score

0.001EPSS

2021-11-09 03:15 PM
23
cve
cve

CVE-2021-43198

In JetBrains TeamCity before 2021.1.2, stored XSS is...

5.4CVSS

5.2AI Score

0.001EPSS

2021-11-09 03:15 PM
22
cve
cve

CVE-2021-43200

In JetBrains TeamCity before 2021.1.2, permission checks in the Agent Push functionality were...

9.8CVSS

9.4AI Score

0.002EPSS

2021-11-09 03:15 PM
19
cve
cve

CVE-2021-43196

In JetBrains TeamCity before 2021.1, information disclosure via the Docker Registry connection dialog is...

7.5CVSS

7.2AI Score

0.002EPSS

2021-11-09 03:15 PM
25
cve
cve

CVE-2021-37545

In JetBrains TeamCity before 2021.1.1, insufficient authentication checks for agent requests were...

7.5CVSS

7.7AI Score

0.001EPSS

2021-08-06 02:15 PM
39
cve
cve

CVE-2021-37548

In JetBrains TeamCity before 2021.1, passwords in cleartext sometimes could be stored in...

7.5CVSS

7.4AI Score

0.002EPSS

2021-08-06 02:15 PM
29
cve
cve

CVE-2021-37547

In JetBrains TeamCity before 2020.2.4, insufficient checks during file uploading were...

5.3CVSS

5.3AI Score

0.001EPSS

2021-08-06 02:15 PM
35
cve
cve

CVE-2021-37544

In JetBrains TeamCity before 2020.2.4, there was an insecure...

9.8CVSS

9.4AI Score

0.014EPSS

2021-08-06 02:15 PM
28
2
cve
cve

CVE-2021-37546

In JetBrains TeamCity before 2021.1, an insecure key generation mechanism for encrypted properties was...

5.3CVSS

5.3AI Score

0.001EPSS

2021-08-06 02:15 PM
32
cve
cve

CVE-2021-37542

In JetBrains TeamCity before 2020.2.3, XSS was...

6.1CVSS

5.9AI Score

0.001EPSS

2021-08-06 02:15 PM
28
cve
cve

CVE-2021-31912

In JetBrains TeamCity before 2020.2.3, account takeover was potentially possible during a password...

8.8CVSS

8.7AI Score

0.002EPSS

2021-05-11 01:15 PM
28
4
cve
cve

CVE-2021-31913

In JetBrains TeamCity before 2020.2.3, insufficient checks of the redirect_uri were made during GitHub SSO token...

7.5CVSS

7.6AI Score

0.002EPSS

2021-05-11 01:15 PM
18
cve
cve

CVE-2021-31914

In JetBrains TeamCity before 2020.2.4 on Windows, arbitrary code execution on TeamCity Server was...

9.8CVSS

9.6AI Score

0.004EPSS

2021-05-11 01:15 PM
17
2
cve
cve

CVE-2021-31915

In JetBrains TeamCity before 2020.2.4, OS command injection leading to remote code execution was...

9.8CVSS

9.9AI Score

0.005EPSS

2021-05-11 01:15 PM
64
3
cve
cve

CVE-2021-31911

In JetBrains TeamCity before 2020.2.3, reflected XSS was possible on several...

6.1CVSS

6AI Score

0.001EPSS

2021-05-11 01:15 PM
18
2
cve
cve

CVE-2021-31910

In JetBrains TeamCity before 2020.2.3, information disclosure via SSRF was...

7.5CVSS

7.2AI Score

0.002EPSS

2021-05-11 01:15 PM
19
4
cve
cve

CVE-2021-31907

In JetBrains TeamCity before 2020.2.2, permission checks for changing TeamCity plugins were implemented...

5.3CVSS

5.4AI Score

0.001EPSS

2021-05-11 12:15 PM
19
cve
cve

CVE-2021-31909

In JetBrains TeamCity before 2020.2.3, argument injection leading to remote code execution was...

9.8CVSS

9.8AI Score

0.005EPSS

2021-05-11 12:15 PM
17
2
cve
cve

CVE-2021-3315

In JetBrains TeamCity before 2020.2.2, stored XSS on a tests page was...

5.4CVSS

5.2AI Score

0.001EPSS

2021-05-11 12:15 PM
19
cve
cve

CVE-2021-31908

In JetBrains TeamCity before 2020.2.3, stored XSS was possible on several...

5.4CVSS

5.2AI Score

0.001EPSS

2021-05-11 12:15 PM
19
4
cve
cve

CVE-2021-26310

In the TeamCity IntelliJ plugin before 2020.2.2.85899, DoS was...

7.5CVSS

7.5AI Score

0.001EPSS

2021-05-11 12:15 PM
22
cve
cve

CVE-2021-31904

In JetBrains TeamCity before 2020.2.2, XSS was potentially possible on the test history...

6.1CVSS

6AI Score

0.001EPSS

2021-05-11 12:15 PM
18
cve
cve

CVE-2021-26309

Information disclosure in the TeamCity plugin for IntelliJ before 2020.2.2.85899 was possible because a local temporary file had Insecure...

3.3CVSS

3.9AI Score

0.0004EPSS

2021-05-11 12:15 PM
17
cve
cve

CVE-2021-31906

In JetBrains TeamCity before 2020.2.2, audit logs were not sufficient when an administrator uploaded a...

2.7CVSS

4.1AI Score

0.001EPSS

2021-05-11 12:15 PM
23
2
cve
cve

CVE-2021-25774

In JetBrains TeamCity before 2020.2.1, a user could get access to the GitHub access token of another...

4.3CVSS

4.6AI Score

0.001EPSS

2021-02-03 04:15 PM
24
2
cve
cve

CVE-2021-25772

In JetBrains TeamCity before 2020.2.2, TeamCity server DoS was possible via server...

5.3CVSS

5.3AI Score

0.001EPSS

2021-02-03 04:15 PM
23
cve
cve

CVE-2021-25773

JetBrains TeamCity before 2020.2 was vulnerable to reflected XSS on several...

6.1CVSS

6AI Score

0.001EPSS

2021-02-03 04:15 PM
20
2
cve
cve

CVE-2021-25777

In JetBrains TeamCity before 2020.2.1, permissions during token removal were checked...

5.3CVSS

5.4AI Score

0.001EPSS

2021-02-03 04:15 PM
17
cve
cve

CVE-2021-25775

In JetBrains TeamCity before 2020.2.1, the server admin could create and see access tokens for any other...

3.8CVSS

4.5AI Score

0.001EPSS

2021-02-03 04:15 PM
17
cve
cve

CVE-2021-25776

In JetBrains TeamCity before 2020.2, an ECR token could be exposed in a build's...

7.5CVSS

7.4AI Score

0.002EPSS

2021-02-03 04:15 PM
19
cve
cve

CVE-2021-25778

In JetBrains TeamCity before 2020.2.1, permissions during user deletion were checked...

5.3CVSS

5.3AI Score

0.001EPSS

2021-02-03 04:15 PM
19
4
cve
cve

CVE-2020-35667

JetBrains TeamCity Plugin before 2020.2.85695 SSRF. Vulnerability that could potentially expose user...

7.5CVSS

7.4AI Score

0.002EPSS

2021-02-03 04:15 PM
27
2
cve
cve

CVE-2020-27627

JetBrains TeamCity before 2020.1.2 was vulnerable to URL...

6.1CVSS

6.5AI Score

0.001EPSS

2020-11-16 04:15 PM
21
cve
cve

CVE-2020-27628

In JetBrains TeamCity before 2020.1.5, the Guest user had access to audit...

4.3CVSS

4.6AI Score

0.001EPSS

2020-11-16 03:15 PM
21
cve
cve

CVE-2020-27629

In JetBrains TeamCity before 2020.1.5, secure dependency parameters could be not masked in depending builds when there are no internal...

5.3CVSS

5.3AI Score

0.001EPSS

2020-11-16 03:15 PM
16
cve
cve

CVE-2020-15829

In JetBrains TeamCity before 2019.2.3, password parameters could be disclosed via build...

5.3CVSS

5.4AI Score

0.001EPSS

2020-08-08 09:15 PM
34
cve
cve

CVE-2020-15828

In JetBrains TeamCity before 2020.1.1, project parameter values can be retrieved by a user without appropriate...

6.5CVSS

6.4AI Score

0.001EPSS

2020-08-08 09:15 PM
38
cve
cve

CVE-2020-15826

In JetBrains TeamCity before 2020.1, users are able to assign more permissions than they...

4.3CVSS

4.6AI Score

0.001EPSS

2020-08-08 09:15 PM
30
cve
cve

CVE-2020-15831

JetBrains TeamCity before 2019.2.3 is vulnerable to reflected XSS in the administration...

6.1CVSS

5.9AI Score

0.001EPSS

2020-08-08 09:15 PM
31
cve
cve

CVE-2020-15830

JetBrains TeamCity before 2019.2.3 is vulnerable to stored XSS in the administration...

6.1CVSS

5.9AI Score

0.001EPSS

2020-08-08 09:15 PM
32
cve
cve

CVE-2020-15825

In JetBrains TeamCity before 2020.1, users with the Modify Group permission can elevate other users'...

8.8CVSS

8.6AI Score

0.001EPSS

2020-08-08 09:15 PM
35
Total number of security vulnerabilities179