Page 12 of 201 results (0.003 seconds)

CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 0

CVE-2022-36322

https://notcve.org/view.php?id=CVE-2022-36322

20 Jul 2022 — In JetBrains TeamCity before 2022.04.2 build parameter injection was possible En JetBrains TeamCity versiones anteriores a 2022.04.2, era posible la inyección de parámetros de construcción • https://www.jetbrains.com/privacy-security/issues-fixed • CWE-88: Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') •

CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0

CVE-2022-36321

https://notcve.org/view.php?id=CVE-2022-36321

20 Jul 2022 — In JetBrains TeamCity before 2022.04.2 the private SSH key could be written to the build log in some cases En JetBrains TeamCity versiones anteriores a 2022.04.2, la clave privada SSH podía ser escrita en el registro de construcción en algunos casos • https://www.jetbrains.com/privacy-security/issues-fixed • CWE-532: Insertion of Sensitive Information into Log File •

CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0

CVE-2022-29929

https://notcve.org/view.php?id=CVE-2022-29929

12 May 2022 — In JetBrains TeamCity before 2022.04 potential XSS via Referrer header was possible En JetBrains TeamCity versiones anteriores a 2022.04, era posible un potencial ataque de tipo XSS por medio del encabezado Referrer • https://www.jetbrains.com/privacy-security/issues-fixed • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 4.9EPSS: 0%CPEs: 1EXPL: 0

CVE-2022-29928

https://notcve.org/view.php?id=CVE-2022-29928

12 May 2022 — In JetBrains TeamCity before 2022.04 leak of secrets in TeamCity agent logs was possible En JetBrains TeamCity versiones anteriores a 2022.04, era posible una filtración de secretos en los registros del agente de TeamCity • https://www.jetbrains.com/privacy-security/issues-fixed • CWE-532: Insertion of Sensitive Information into Log File •

CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0

CVE-2022-29927

https://notcve.org/view.php?id=CVE-2022-29927

12 May 2022 — In JetBrains TeamCity before 2022.04 reflected XSS on the Build Chain Status page was possible En JetBrains TeamCity versiones anteriores a 2022.04, era posible un ataque de tipo XSS reflejado en la página Build Chain Status • https://www.jetbrains.com/privacy-security/issues-fixed • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0

CVE-2022-25261

https://notcve.org/view.php?id=CVE-2022-25261

25 Feb 2022 — JetBrains TeamCity before 2021.2.2 was vulnerable to reflected XSS. JetBrains TeamCity antes de 2021.2.2, era vulnerable a un ataque de tipo XSS reflejado. • https://blog.jetbrains.com • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0

CVE-2022-25263

https://notcve.org/view.php?id=CVE-2022-25263

25 Feb 2022 — JetBrains TeamCity before 2021.2.3 was vulnerable to OS command injection in the Agent Push feature configuration. JetBrains TeamCity antes de 2021.2.3, era vulnerable a una inyección de comandos del Sistema Operativo en la configuración de la función Agent Push. • https://blog.jetbrains.com • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

CVE-2022-25264

https://notcve.org/view.php?id=CVE-2022-25264

25 Feb 2022 — In JetBrains TeamCity before 2021.2.3, environment variables of the "password" type could be logged in some cases. En JetBrains TeamCity antes de 2021.2.3, las variables de entorno del tipo "password" podían registrarse en algunos casos. • https://blog.jetbrains.com • CWE-922: Insecure Storage of Sensitive Information •

CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1

CVE-2022-24342

https://notcve.org/view.php?id=CVE-2022-24342

25 Feb 2022 — In JetBrains TeamCity before 2021.2.1, URL injection leading to CSRF was possible. En JetBrains TeamCity versiones anteriores a 2021.2.1, era posible una inyección de URL que conllevaba a un ataque de tipo CSRF. • https://github.com/yuriisanin/CVE-2022-24342 • CWE-352: Cross-Site Request Forgery (CSRF) •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

CVE-2022-24341

https://notcve.org/view.php?id=CVE-2022-24341

25 Feb 2022 — In JetBrains TeamCity before 2021.2.1, editing a user account to change its password didn't terminate sessions of the edited user. En JetBrains TeamCity versiones anteriores a 2021.2.1, la edición de una cuenta de usuario para cambiar su contraseña no terminaba las sesiones del usuario editado. • https://blog.jetbrains.com • CWE-613: Insufficient Session Expiration •