CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2026/05/29 6:15 p.m.•12 views

EUVD-2026-33382

In JetBrains TeamCity before 2026.1 improper permission checks exposed build configuration parameters...

Vulnrichment•added 2026/05/29 6:15 p.m.•12 views

CVE-2026-49374

In JetBrains TeamCity before 2026.1 improper permission checks exposed build configuration parameters...

CVE•added 2026/05/29 6:15 p.m.•17 views

CVE-2026-49374

CVE-2026-49374 affects JetBrains TeamCity before 2026.1, where improper permission checks exposed build configuration parameters. The CVSS 3.1 base score is 7.6 (HIGH) with Network attack vector, Low attack complexity, Privileges Required: LOW, and UI none. Impact: Confidentiality HIGH, Integrity...

Exploits0References1Affected Software1

Positive Technologies•added 2026/05/29 12:0 a.m.•10 views

PT-2026-44954

Name of the Vulnerable Software and Affected Versions JetBrains TeamCity versions prior to 2026.1 Description Improper permission checks allow for the exposure of build configuration parameters. Recommendations Update to version 2026.1...

CNNVD•added 2026/05/29 12:0 a.m.•9 views

JetBrains TeamCity 安全漏洞

JetBrains TeamCity is a set of distributed build management and continuous integration tools developed by the Czech company JetBrains. This tool offers features such as continuous unit testing, code quality analysis, and reporting on build issues. Versions of JetBrains TeamCity prior to 2026.1...

7.6CVSS5.9AI score0.00226EPSS

CVE•added 2026/04/03 6:30 a.m.•11 views

CVE-2026-5457

PropertyGuru AgentNet Singapore App (Android, up to v23.7.10) has a flaw in com.allproperty.android.agentnet.BuildConfig.java where manipulating SEGMENT_ANDROID_WRITE_KEY/SEGMENT_TOS_WRITE_KEY leads to use of a hard-coded cryptographic key. The attack requires local access; the exploit has been r...

4.8CVSS5.4AI score0.00144EPSS

Fedora•added 2026/03/24 12:52 a.m.•4 views

[SECURITY] Fedora 43 Update: cmake-3.31.11-1.fc43

CMake is used to control the software compilation process using simple platform and compiler independent configuration files. CMake generates native makefiles and workspaces that can be used in the compiler environment of your choice. CMake is quite sophisticated: it is possible to support comple...

4.8CVSS5.9AI score0.00135EPSS

Exploits0

NVD•added 2026/03/16 3:16 p.m.•4 views

CVE-2026-4243

A weakness has been identified in La Nacion App 10.2.25 on Android. This impacts an unknown function of the file source/app/lanacion/clublanacion/BuildConfig.java of the component app.lanacion.activity. Executing a manipulation of the argument APIKEYWEBSOCKETCV can lead to unprotected storage of...

2.5CVSS0.00107EPSS

CVE•added 2026/03/16 6:2 a.m.•13 views

CVE-2026-4219

CVE-2026-4219 affects INDEX Conferences & Exhibitions Organization YWF BPOF APGCS App up to version 1.0.2 on Android. The vulnerability concerns the file com/index/event/BuildConfig.java of the ae.index.apgcs component, where manipulating the arguments ACCESS_KEY and HASH_KEY can reveal hard-code...

4.8CVSS5.3AI score0.00104EPSS

Exploits0References5

CNNVD•added 2026/03/16 12:0 a.m.•4 views

La Nacion App 安全漏洞

La Nacion App is a news and information application developed by La Nacion Corporation. Version 10.2.25 of La Nacion App contains a security vulnerability. This vulnerability stems from improper handling of the parameter APIKEYWEBSOCKETCV in the file...

2.5CVSS5.7AI score0.00107EPSS

NVD•added 2026/03/06 7:16 a.m.•5 views

CVE-2026-29049

melange allows users to build apk packages using declarative pipelines. In version 0.40.5 and prior, melange update-cache downloads URIs from build configs via io.Copy without any size limit or HTTP client timeout pkg/renovate/cache/cache.go. An attacker-controlled URI in a melange config can cau...

4.3CVSS0.00177EPSS

Positive Technologies•added 2026/03/02 12:0 a.m.•5 views

PT-2026-23003

Name of the Vulnerable Software and Affected Versions melange versions prior to 0.40.5 Description melange enables users to create apk packages using declarative pipelines. In versions 0.40.5 and earlier, the melange update-cache function downloads URIs from build configurations using io.Copy...

9.9CVSS5.9AI score0.22162EPSS

Exploits68References136

EUVD•added 2026/02/25 3:31 p.m.•4 views

EUVD-2026-8653

In JetBrains TeamCity before 2025.11.3 missing authorization allowed project developers to add parameters to build configurations...

4.3CVSS5.3AI score0.00158EPSS

Exploits0References2

OSV•added 2026/02/25 2:16 p.m.•7 views

CVE-2026-28195

In JetBrains TeamCity before 2025.11.3 missing authorization allowed project developers to add parameters to build configurations...

4.3CVSS5.8AI score0.00158EPSS

ATTACKERKB•added 2026/02/25 12:57 p.m.•2 views

CVE-2026-28195

In JetBrains TeamCity before 2025.11.3 missing authorization allowed project developers to add parameters to build configurations...

4.3CVSS5.9AI score0.00158EPSS

Exploits0References2

RedhatCVE•added 2026/01/09 10:18 a.m.•6 views

CVE-2019-18363

In JetBrains TeamCity before 2019.1.2, access could be gained to the history of builds of a deleted build configuration under some circumstances...

5.3CVSS6.8AI score0.00923EPSS