Vulnerabilities > Jetbrains
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-11-09 | CVE-2021-43193 | Unspecified vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2021.1.2, remote code execution via the agent push functionality is possible. | 9.8 |
2021-11-09 | CVE-2021-43194 | Unspecified vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2021.1.2, user enumeration was possible. | 5.3 |
2021-11-09 | CVE-2021-43195 | Unspecified vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2021.1.2, some HTTP security headers were missing. | 5.3 |
2021-11-09 | CVE-2021-43196 | Unspecified vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2021.1, information disclosure via the Docker Registry connection dialog is possible. | 7.5 |
2021-11-09 | CVE-2021-43197 | Cross-site Scripting vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2021.1.2, email notifications could include unescaped HTML for XSS. | 6.1 |
2021-11-09 | CVE-2021-43198 | Cross-site Scripting vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2021.1.2, stored XSS is possible. | 5.4 |
2021-11-09 | CVE-2021-43199 | Incorrect Default Permissions vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2021.1.2, permission checks in the Create Patch functionality are insufficient. | 5.3 |
2021-11-09 | CVE-2021-43200 | Unspecified vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2021.1.2, permission checks in the Agent Push functionality were insufficient. | 9.8 |
2021-11-09 | CVE-2021-43201 | Unspecified vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2021.1.3, a newly created project could take settings from an already deleted project. | 5.3 |
2021-11-09 | CVE-2021-43203 | Improper Authentication vulnerability in Jetbrains Ktor In JetBrains Ktor before 1.6.4, nonce verification during the OAuth2 authentication process is implemented improperly. | 7.5 |