Teamcity CVEs and Security Vulnerabilities

Filtered by vendor Jetbrains Subscriptions

Filtered by product Teamcity Subscriptions

Search

Switch to Advanced Search (Beta)

Total 254 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2021-25777	1 Jetbrains	1 Teamcity	2024-11-21	5.3 Medium
In JetBrains TeamCity before 2020.2.1, permissions during token removal were checked improperly.
CVE-2021-25776	1 Jetbrains	1 Teamcity	2024-11-21	7.5 High
In JetBrains TeamCity before 2020.2, an ECR token could be exposed in a build's parameters.
CVE-2021-25775	1 Jetbrains	1 Teamcity	2024-11-21	3.8 Low
In JetBrains TeamCity before 2020.2.1, the server admin could create and see access tokens for any other users.
CVE-2021-25774	1 Jetbrains	1 Teamcity	2024-11-21	4.3 Medium
In JetBrains TeamCity before 2020.2.1, a user could get access to the GitHub access token of another user.
CVE-2021-25773	1 Jetbrains	1 Teamcity	2024-11-21	6.1 Medium
JetBrains TeamCity before 2020.2 was vulnerable to reflected XSS on several pages.
CVE-2021-25772	1 Jetbrains	1 Teamcity	2024-11-21	5.3 Medium
In JetBrains TeamCity before 2020.2.2, TeamCity server DoS was possible via server integration.
CVE-2020-7911	1 Jetbrains	1 Teamcity	2024-11-21	6.1 Medium
In JetBrains TeamCity before 2019.2, several user-level pages were vulnerable to XSS.
CVE-2020-7910	1 Jetbrains	1 Teamcity	2024-11-21	5.4 Medium
JetBrains TeamCity before 2019.2 was vulnerable to a stored XSS attack by a user with the developer role.
CVE-2020-7909	1 Jetbrains	1 Teamcity	2024-11-21	7.5 High
In JetBrains TeamCity before 2019.1.5, some server-stored passwords could be shown via the web UI.
CVE-2020-7908	1 Jetbrains	1 Teamcity	2024-11-21	4.3 Medium
In JetBrains TeamCity before 2019.1.5, reverse tabnabbing was possible on several pages.
CVE-2020-35667	1 Jetbrains	1 Teamcity	2024-11-21	7.5 High
JetBrains TeamCity Plugin before 2020.2.85695 SSRF. Vulnerability that could potentially expose user credentials.
CVE-2020-27629	1 Jetbrains	1 Teamcity	2024-11-21	5.3 Medium
In JetBrains TeamCity before 2020.1.5, secure dependency parameters could be not masked in depending builds when there are no internal artifacts.
CVE-2020-27628	1 Jetbrains	1 Teamcity	2024-11-21	4.3 Medium
In JetBrains TeamCity before 2020.1.5, the Guest user had access to audit records.
CVE-2020-27627	1 Jetbrains	1 Teamcity	2024-11-21	6.1 Medium
JetBrains TeamCity before 2020.1.2 was vulnerable to URL injection.
CVE-2020-15831	1 Jetbrains	1 Teamcity	2024-11-21	6.1 Medium
JetBrains TeamCity before 2019.2.3 is vulnerable to reflected XSS in the administration UI.
CVE-2020-15830	1 Jetbrains	1 Teamcity	2024-11-21	6.1 Medium
JetBrains TeamCity before 2019.2.3 is vulnerable to stored XSS in the administration UI.
CVE-2020-15829	1 Jetbrains	1 Teamcity	2024-11-21	5.3 Medium
In JetBrains TeamCity before 2019.2.3, password parameters could be disclosed via build logs.
CVE-2020-15828	1 Jetbrains	1 Teamcity	2024-11-21	6.5 Medium
In JetBrains TeamCity before 2020.1.1, project parameter values can be retrieved by a user without appropriate permissions.
CVE-2020-15826	1 Jetbrains	1 Teamcity	2024-11-21	4.3 Medium
In JetBrains TeamCity before 2020.1, users are able to assign more permissions than they have.
CVE-2020-15825	1 Jetbrains	1 Teamcity	2024-11-21	8.8 High
In JetBrains TeamCity before 2020.1, users with the Modify Group permission can elevate other users' privileges.

« first previous Page 11 of 13. next last »