Page 3 of 195 results (0.012 seconds)

CVSS: 3.5EPSS: 0%CPEs: 1EXPL: 0

In JetBrains TeamCity before 2024.07 an OAuth code for JetBrains Space could be stolen via Space Application connection En JetBrains TeamCity antes de 2024.07, se podía robar un código OAuth para JetBrains Space a través de la conexión de Space Application. • https://www.jetbrains.com/privacy-security/issues-fixed • CWE-303: Incorrect Implementation of Authentication Algorithm •

CVSS: 2.6EPSS: 0%CPEs: 1EXPL: 0

In JetBrains TeamCity before 2024.07 comparison of authorization tokens took non-constant time En JetBrains TeamCity antes de 2024.07, la comparación de tokens de autorización no llevaba un tiempo constante • https://www.jetbrains.com/privacy-security/issues-fixed • CWE-208: Observable Timing Discrepancy •

CVSS: 7.4EPSS: 0%CPEs: 1EXPL: 0

In JetBrains TeamCity before 2024.07 access tokens could continue working after deletion or expiration En JetBrains TeamCity antes de 2024.07, los tokens de acceso podían seguir funcionando después de su eliminación o vencimiento • https://www.jetbrains.com/privacy-security/issues-fixed • CWE-613: Insufficient Session Expiration •

CVSS: 3.5EPSS: 0%CPEs: 1EXPL: 0

In JetBrains TeamCity before 2024.07 stored XSS was possible on Show Connection page En JetBrains TeamCity antes de 2024.07, era posible el XSS almacenado en la página Show Connection • https://www.jetbrains.com/privacy-security/issues-fixed • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 4.6EPSS: 0%CPEs: 1EXPL: 0

In JetBrains TeamCity before 2024.07 stored XSS was possible on the Code Inspection tab En JetBrains TeamCity antes de 2024.07, era posible el XSS almacenado en la pestaña Code Inspection • https://www.jetbrains.com/privacy-security/issues-fixed • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •