Vulnerabilities > CVE-2021-26309 - Exposure of Resource to Wrong Sphere vulnerability in Jetbrains Teamcity

047910
CVSS 2.1 - LOW
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
local
low complexity
jetbrains
CWE-668
NVD
Published: 2021-05-11
Updated: 2021-05-19

Summary

Information disclosure in the TeamCity plugin for IntelliJ before 2020.2.2.85899 was possible because a local temporary file had Insecure Permissions.

Vulnerable Configurations

Part Description Count
Application
Jetbrains
1

Common Weakness Enumeration (CWE)

References