Lucene search
JetBrainsVULNRICHMENT:CVE-2024-36362HistoryMay 29, 2024 - 1:28 p.m.
CVE-2024-36362
2024-05-2913:28:57
JetBrains
github.com
jetbrains teamcity
path traversal
file read
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
7
Confidence
Low
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
In JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5, 2024.03.2 path traversal allowing to read files from server was possible
Related
nvd
nvd
CVE-2024-36362
2024-05-29 14:15:22
cvelist
cvelist
CVE-2024-36362
2024-05-29 13:28:57
cve
cve
CVE-2024-36362
2024-05-29 14:15:22
nessus
nessus
TeamCity Server Multiple Vulnerabilities (CVE-2024-36362 / CVE-2024-36365)
2024-05-31 00:00:00
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
7
Confidence
Low
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2024-36362