NotCVE - vendor:"JetBrains" product:"TeamCity" version:" >= 2024.03.0

Page 6 of 28 results (0.012 seconds)

CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0

CVE-2024-36362

https://notcve.org/view.php?id=CVE-2024-36362

In JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5, 2024.03.2 path traversal allowing to read files from server was possible En JetBrains TeamCity antes de 2022.04.6, 2022.10.5, 2023.05.5, 2023.11.5, 2024.03.2 era posible path traversal permitiendo leer archivos del servidor • https://www.jetbrains.com/privacy-security/issues-fixed • CWE-23: Relative Path Traversal •

CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0

CVE-2024-35301

https://notcve.org/view.php?id=CVE-2024-35301

In JetBrains TeamCity before 2024.03.1 commit status publisher didn't check project scope of the GitHub App token • https://www.jetbrains.com/privacy-security/issues-fixed • CWE-280: Improper Handling of Insufficient Permissions or Privileges •

CVSS: 3.5EPSS: 0%CPEs: 1EXPL: 0

CVE-2024-35300

https://notcve.org/view.php?id=CVE-2024-35300

In JetBrains TeamCity between 2024.03 and 2024.03.1 several stored XSS in the available updates page were possible • https://www.jetbrains.com/privacy-security/issues-fixed • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

1...4 5 6