Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Teamcity
(Jetbrains)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 232 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2024-05-29 | CVE-2024-36377 | In JetBrains TeamCity before 2024.03.2 certain TeamCity API endpoints did not check user permissions | Teamcity | 8.1 | ||
| 2024-05-29 | CVE-2024-36378 | In JetBrains TeamCity before 2024.03.2 server was susceptible to DoS attacks with incorrect auth tokens | Teamcity | 7.5 | ||
| 2024-05-29 | CVE-2024-36372 | In JetBrains TeamCity before 2023.05.6 reflected XSS on the subscriptions page was possible | Teamcity | 6.1 | ||
| 2024-05-29 | CVE-2024-36373 | In JetBrains TeamCity before 2024.03.2 several stored XSS in untrusted builds settings were possible | Teamcity | 5.4 | ||
| 2024-05-29 | CVE-2024-36374 | In JetBrains TeamCity before 2024.03.2 stored XSS via build step settings was possible | Teamcity | 5.4 | ||
| 2024-05-29 | CVE-2024-36375 | In JetBrains TeamCity before 2024.03.2 technical information regarding TeamCity server could be exposed | Teamcity | 5.3 | ||
| 2024-05-29 | CVE-2024-36376 | In JetBrains TeamCity before 2024.03.2 users could perform actions that should not be available to them based on their permissions | Teamcity | 8.1 | ||
| 2024-12-20 | CVE-2024-56348 | In JetBrains TeamCity before 2024.12 improper access control allowed viewing details of unauthorized agents | Teamcity | 4.3 | ||
| 2024-12-20 | CVE-2024-56349 | In JetBrains TeamCity before 2024.12 improper access control allowed unauthorized users to modify build logs | Teamcity | 5.3 | ||
| 2024-12-20 | CVE-2024-56350 | In JetBrains TeamCity before 2024.12 build credentials allowed unauthorized viewing of projects | Teamcity | 4.3 |