Teamcity CVEs and Security Vulnerabilities

Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (240 CVEs found)

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2021-43197	1 Jetbrains	1 Teamcity	2024-11-21	6.1 Medium
In JetBrains TeamCity before 2021.1.2, email notifications could include unescaped HTML for XSS.
CVE-2021-43196	1 Jetbrains	1 Teamcity	2024-11-21	7.5 High
In JetBrains TeamCity before 2021.1, information disclosure via the Docker Registry connection dialog is possible.
CVE-2021-43195	1 Jetbrains	1 Teamcity	2024-11-21	5.3 Medium
In JetBrains TeamCity before 2021.1.2, some HTTP security headers were missing.
CVE-2021-43194	1 Jetbrains	1 Teamcity	2024-11-21	5.3 Medium
In JetBrains TeamCity before 2021.1.2, user enumeration was possible.
CVE-2021-43193	1 Jetbrains	1 Teamcity	2024-11-21	9.8 Critical
In JetBrains TeamCity before 2021.1.2, remote code execution via the agent push functionality is possible.
CVE-2021-3315	1 Jetbrains	1 Teamcity	2024-11-21	5.4 Medium
In JetBrains TeamCity before 2020.2.2, stored XSS on a tests page was possible.
CVE-2021-37548	1 Jetbrains	1 Teamcity	2024-11-21	7.5 High
In JetBrains TeamCity before 2021.1, passwords in cleartext sometimes could be stored in VCS.
CVE-2021-37547	1 Jetbrains	1 Teamcity	2024-11-21	5.3 Medium
In JetBrains TeamCity before 2020.2.4, insufficient checks during file uploading were made.
CVE-2021-37546	1 Jetbrains	1 Teamcity	2024-11-21	5.3 Medium
In JetBrains TeamCity before 2021.1, an insecure key generation mechanism for encrypted properties was used.
CVE-2021-37545	1 Jetbrains	1 Teamcity	2024-11-21	7.5 High
In JetBrains TeamCity before 2021.1.1, insufficient authentication checks for agent requests were made.
CVE-2021-37544	1 Jetbrains	1 Teamcity	2024-11-21	9.8 Critical
In JetBrains TeamCity before 2020.2.4, there was an insecure deserialization.
CVE-2021-37542	1 Jetbrains	1 Teamcity	2024-11-21	6.1 Medium
In JetBrains TeamCity before 2020.2.3, XSS was possible.
CVE-2021-31915	1 Jetbrains	1 Teamcity	2024-11-21	9.8 Critical
In JetBrains TeamCity before 2020.2.4, OS command injection leading to remote code execution was possible.
CVE-2021-31914	2 Jetbrains, Microsoft	2 Teamcity, Windows	2024-11-21	9.8 Critical
In JetBrains TeamCity before 2020.2.4 on Windows, arbitrary code execution on TeamCity Server was possible.
CVE-2021-31913	1 Jetbrains	1 Teamcity	2024-11-21	7.5 High
In JetBrains TeamCity before 2020.2.3, insufficient checks of the redirect_uri were made during GitHub SSO token exchange.
CVE-2021-31912	1 Jetbrains	1 Teamcity	2024-11-21	8.8 High
In JetBrains TeamCity before 2020.2.3, account takeover was potentially possible during a password reset.
CVE-2021-31911	1 Jetbrains	1 Teamcity	2024-11-21	6.1 Medium
In JetBrains TeamCity before 2020.2.3, reflected XSS was possible on several pages.
CVE-2021-31910	1 Jetbrains	1 Teamcity	2024-11-21	7.5 High
In JetBrains TeamCity before 2020.2.3, information disclosure via SSRF was possible.
CVE-2021-31909	1 Jetbrains	1 Teamcity	2024-11-21	9.8 Critical
In JetBrains TeamCity before 2020.2.3, argument injection leading to remote code execution was possible.
CVE-2021-31908	1 Jetbrains	1 Teamcity	2024-11-21	5.4 Medium
In JetBrains TeamCity before 2020.2.3, stored XSS was possible on several pages.

« first previous Page 9 of 12. next last »