Description
In JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5 an XSS could be executed via certain report grouping and filtering operations
No analysis available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
No advisories yet.
References
| Link | Providers |
|---|---|
| https://www.jetbrains.com/privacy-security/issues-fixed/ |
|
History
Fri, 11 Jul 2025 13:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
epss
|
epss
|
Mon, 16 Dec 2024 16:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Jetbrains
Jetbrains teamcity |
|
| CPEs | cpe:2.3:a:jetbrains:teamcity:*:*:*:*:*:*:*:* | |
| Vendors & Products |
Jetbrains
Jetbrains teamcity |
Status: PUBLISHED
Assigner: JetBrains
Published:
Updated: 2024-08-02T03:37:05.029Z
Reserved: 2024-05-24T10:46:05.392Z
Link: CVE-2024-36366
Updated: 2024-08-02T03:37:05.029Z
Status : Analyzed
Published: 2024-05-29T14:15:23.123
Modified: 2026-06-17T07:36:35.197
Link: CVE-2024-36366
No data.
OpenCVE Enrichment
No data.
Weaknesses
-
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')