Vulnerabilities > Jetbrains > Teamcity > Critical
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-03-04 | CVE-2024-27198 | Unspecified vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2023.11.4 authentication bypass allowing to perform admin actions was possible | 9.8 |
2024-02-06 | CVE-2024-23917 | Missing Authentication for Critical Function vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2023.11.3 authentication bypass leading to RCE was possible | 9.8 |
2023-09-19 | CVE-2023-42793 | Authentication Bypass Using an Alternate Path or Channel vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2023.05.4 authentication bypass leading to RCE on TeamCity Server was possible | 9.8 |
2023-05-31 | CVE-2023-34218 | Incorrect Authorization vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2023.05 bypass of permission checks allowing to perform admin actions was possible | 9.8 |
2023-02-23 | CVE-2022-48342 | Insecure Default Initialization of Resource vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2022.10.2 jVMTI was enabled by default on agents. | 9.8 |
2022-02-25 | CVE-2022-24331 | Unspecified vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2021.1.4, GitLab authentication impersonation was possible. | 9.8 |
2019-10-02 | CVE-2019-12157 | Improper Input Validation vulnerability in Jetbrains Teamcity and Upsource In JetBrains UpSource versions before 2018.2 build 1293, there is credential disclosure via RPC commands. | 10.0 |
2019-10-02 | CVE-2019-15036 | OS Command Injection vulnerability in Jetbrains Teamcity 2018.2.4 An issue was discovered in JetBrains TeamCity 2018.2.4. | 9.0 |