CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2020-27628
https://notcve.org/view.php?id=CVE-2020-27628
In JetBrains TeamCity before 2020.1.5, the Guest user had access to audit records. En JetBrains TeamCity versiones anteriores a 2020.1.5, el usuario invitado presentaba un acceso a los registros de auditoría • https://blog.jetbrains.com https://blog.jetbrains.com/2020/11/16/jetbrains-security-bulletin-q3-2020 •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2020-27629
https://notcve.org/view.php?id=CVE-2020-27629
In JetBrains TeamCity before 2020.1.5, secure dependency parameters could be not masked in depending builds when there are no internal artifacts. En JetBrains TeamCity versiones anteriores a 2020.1.5, los parámetros de dependencias seguras no podían ser enmascarados en compilaciones dependiendo de cuando no existan artefactos internos • https://blog.jetbrains.com https://blog.jetbrains.com/2020/11/16/jetbrains-security-bulletin-q3-2020 •
CVSS: 10.0EPSS: 3%CPEs: 1EXPL: 0CVE-2020-25207
https://notcve.org/view.php?id=CVE-2020-25207
JetBrains ToolBox before version 1.18 is vulnerable to Remote Code Execution via a browser protocol handler. JetBrains ToolBox versiones anteriores a 1.18, es vulnerable a una Ejecución de Código Remota por medio de un manejador de protocolo del navegador • https://blog.jetbrains.com https://blog.jetbrains.com/2020/11/16/jetbrains-security-bulletin-q3-2020 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2020-25013
https://notcve.org/view.php?id=CVE-2020-25013
JetBrains ToolBox before version 1.18 is vulnerable to a Denial of Service attack via a browser protocol handler. JetBrains ToolBox versiones anteriores a 1.18 es vulnerable a un ataque de Denegación de Servicio por medio de un manejador de protocolo del navegador • https://blog.jetbrains.com https://blog.jetbrains.com/2020/11/16/jetbrains-security-bulletin-q3-2020 •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2020-27624
https://notcve.org/view.php?id=CVE-2020-27624
JetBrains YouTrack before 2020.3.888 was vulnerable to SSRF. JetBrains YouTrack versiones anteriores a 2020.3.888, era vulnerable a un ataque de tipo SSRF • https://blog.jetbrains.com https://blog.jetbrains.com/2020/11/16/jetbrains-security-bulletin-q3-2020 • CWE-918: Server-Side Request Forgery (SSRF) •