In JetBrains TeamCity before 2023.05.2 a token with limited permissions could be used to gain full account access
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.jetbrains.com/privacy-security/issues-fixed/ |
History
No history.
MITRE
Status: PUBLISHED
Assigner: JetBrains
Published: 2023-07-25T14:45:43.929Z
Updated: 2024-08-02T18:02:06.460Z
Reserved: 2023-07-25T14:44:43.718Z
Link: CVE-2023-39173
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-07-25T15:15:13.693
Modified: 2023-08-01T01:02:33.797
Link: CVE-2023-39173
Redhat
No data.