Filter
AND

JetBrains UpSourceInput Validation

First published (updated )

Jetbrains TeamcityIn JetBrains TeamCity before 2023.11.3 authentication bypass leading to RCE was possible

EPSS
0.09%
First published (updated )

Jetbrains TeamcityJetBrains TeamCity Authentication Bypass Vulnerability

EPSS
97.21%
First published (updated )

Jetbrains TeamcityIn JetBrains TeamCity before 2023.05 bypass of permission checks allowing to perform admin actions w…

First published (updated )

Jetbrains TeamcityIn JetBrains TeamCity before 2024.07 access tokens could continue working after deletion or expirati…

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Jetbrains TeamcityJetBrains TeamCity Authentication Bypass Vulnerability

First published (updated )

Jetbrains TeamcityIn JetBrains TeamCity before 2020.2.4, there was an insecure deserialization.

First published (updated )

Jetbrains TeamcityIn JetBrains TeamCity before 2020.2.3, argument injection leading to remote code execution was possi…

First published (updated )

Jetbrains TeamcityIn JetBrains TeamCity before 2020.2.4 on Windows, arbitrary code execution on TeamCity Server was po…

First published (updated )

Jetbrains TeamcityIn JetBrains TeamCity before 2021.1.3, the X-Frame-Options header is missing in some cases.

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Jetbrains TeamcityIn JetBrains TeamCity before 2021.1.2, permission checks in the Agent Push functionality were insuff…

First published (updated )

Jetbrains TeamcityIn JetBrains TeamCity before 2021.1.2, remote code execution via the agent push functionality is pos…

First published (updated )

Jetbrains TeamcityIn JetBrains TeamCity before 2019.1.4, insecure Java Deserialization could potentially allow remote …

First published (updated )

Jetbrains TeamcityOS Command Injection, Command Injection

First published (updated )

Jetbrains TeamcityPath Traversal

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Jetbrains TeamcityOS Command Injection, Command Injection

First published (updated )

Jetbrains TeamcityXEE

First published (updated )

Jetbrains TeamcityIn JetBrains TeamCity before 2021.1.4, GitLab authentication impersonation was possible.

First published (updated )

Jetbrains TeamcityIn JetBrains TeamCity before 2022.10.2 jVMTI was enabled by default on agents.

First published (updated )

SolarWinds Access Rights ManagerSolarWinds Access Rights Manager (ARM) Directory Traversal Remote Code Execution Vulnerability

EPSS
0.06%
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

SolarWinds Access Rights ManagerSolarWinds Access Rights Manager (ARM) Directory Traversal Remote Code Execution Vulnerability

EPSS
0.06%
First published (updated )

SolarWinds Access Rights ManagerSolarWinds Access Rights Manager (ARM) Directory Traversal Remote Code Execution Vulnerability

EPSS
0.06%
First published (updated )

SolarWinds Access Rights ManagerSolarWinds Access Rights Manager (ARM) Deserialization of Untrusted Data Remote Code Execution

First published (updated )

Jetbrains TeamcityOS Command Injection

First published (updated )

Jetbrains TeamcityIn JetBrains TeamCity before 2020.2.3, account takeover was potentially possible during a password r…

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Jetbrains TeamcityIn JetBrains TeamCity before 2020.1, users with the Modify Group permission can elevate other users'…

8.8
First published (updated )

Jetbrains TeamcityCSRF

8.8
First published (updated )

Jetbrains TeamcityIn JetBrains TeamCity before 2023.05.2 a token with limited permissions could be used to gain full a…

8.8
First published (updated )

Jetbrains TeamcityIn JetBrains TeamCity before 2022.04.2 build parameter injection was possible

8.8
First published (updated )

Jetbrains TeamcityCSRF

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203