Vulnerabilities > Jetbrains > Teamcity > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-11-09 | CVE-2021-43196 | Unspecified vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2021.1, information disclosure via the Docker Registry connection dialog is possible. | 7.5 |
2021-08-06 | CVE-2021-37545 | Improper Authentication vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2021.1.1, insufficient authentication checks for agent requests were made. | 7.5 |
2021-08-06 | CVE-2021-37548 | Cleartext Storage of Sensitive Information vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2021.1, passwords in cleartext sometimes could be stored in VCS. | 7.5 |
2021-05-11 | CVE-2021-31910 | Server-Side Request Forgery (SSRF) vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2020.2.3, information disclosure via SSRF was possible. | 7.5 |
2021-05-11 | CVE-2021-31912 | Weak Password Recovery Mechanism for Forgotten Password vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2020.2.3, account takeover was potentially possible during a password reset. | 8.8 |
2021-05-11 | CVE-2021-31913 | Improper Validation of Integrity Check Value vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2020.2.3, insufficient checks of the redirect_uri were made during GitHub SSO token exchange. | 7.5 |
2021-05-11 | CVE-2021-26310 | Unspecified vulnerability in Jetbrains Teamcity In the TeamCity IntelliJ plugin before 2020.2.2.85899, DoS was possible. | 7.5 |
2021-02-03 | CVE-2021-25776 | Insecure Storage of Sensitive Information vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2020.2, an ECR token could be exposed in a build's parameters. | 7.5 |
2021-02-03 | CVE-2020-35667 | Server-Side Request Forgery (SSRF) vulnerability in Jetbrains Teamcity JetBrains TeamCity Plugin before 2020.2.85695 SSRF. | 7.5 |
2020-08-08 | CVE-2020-15825 | Unspecified vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2020.1, users with the Modify Group permission can elevate other users' privileges. | 8.8 |