Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Teamcity
(Jetbrains)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 217 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2025-02-11 | CVE-2025-26493 | In JetBrains TeamCity before 2024.12.2 several DOM-based XSS were possible on the Code Inspection Report tab | Teamcity | 6.1 | ||
| 2025-02-11 | CVE-2025-26492 | In JetBrains TeamCity before 2024.12.2 improper Kubernetes connection settings could expose sensitive resources | Teamcity | 9.1 | ||
| 2025-03-27 | CVE-2025-31139 | In JetBrains TeamCity before 2025.03 base64 encoded password could be exposed in build log | Teamcity | 6.5 | ||
| 2025-03-27 | CVE-2025-31141 | In JetBrains TeamCity before 2025.03 exception could lead to credential leakage on Cloud Profiles page | Teamcity | 7.5 | ||
| 2025-03-27 | CVE-2025-31140 | In JetBrains TeamCity before 2025.03 stored XSS was possible on Cloud Profiles page | Teamcity | 6.1 | ||
| 2025-04-25 | CVE-2025-46432 | In JetBrains TeamCity before 2025.03.1 base64-encoded credentials could be exposed in build logs | Teamcity | 6.5 | ||
| 2025-04-25 | CVE-2025-46433 | In JetBrains TeamCity before 2025.03.1 improper path validation in loggingPreset parameter was possible | Teamcity | 9.8 | ||
| 2025-04-25 | CVE-2025-46618 | In JetBrains TeamCity before 2025.03.1 stored XSS was possible on Data Directory tab | Teamcity | 6.1 | ||
| 2023-09-19 | CVE-2023-42793 | In JetBrains TeamCity before 2023.05.4 authentication bypass leading to RCE on TeamCity Server was possible | Teamcity | 9.8 | ||
| 2024-05-29 | CVE-2024-36371 | In JetBrains TeamCity before 2023.05.6, 2023.11.5 stored XSS in Commit status publisher was possible | Teamcity | 5.4 |