Description
In JetBrains TeamCity before 2026.1 open redirect in the SAML plugin was possible
Published: 2026-05-29
Score: 3.1 Low
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

JetBrains TeamCity has an open redirect flaw in the SAML plugin that allows an attacker to direct authenticated users to arbitrary URLs. This flaw, categorized as CWE-601, can be exploited to facilitate phishing or delivery of malicious content by tricking users into visiting compromised sites. The impact is limited to user session redirection; it does not directly expose sensitive data or grant code execution, but it can indirectly aid broader attacks.

Affected Systems

All JetBrains TeamCity installations running a version prior to 2026.1 are vulnerable. The affected component is the SAML plugin integrated into the TeamCity server.

Risk and Exploitability

The CVSS score of 3.1 indicates a low severity level, and the EPSS score is currently unavailable. Since the flaw is not listed in the CISA KEV catalog, there is no evidence of widespread exploitation yet. The attack vector is over the web, requiring an attacker to craft a URL that includes the redirect target. Although it does not compromise credentials or data directly, the redirect can be used as a stepping stone for phishing campaigns.

Generated by OpenCVE AI on May 29, 2026 at 19:37 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade JetBrains TeamCity to version 2026.1 or later to receive the vendor patch that removes the open redirect path.
  • If an upgrade cannot be performed immediately, disable or remove the SAML plugin or restrict its redirect endpoint to trusted domains.
  • Implement web application firewall rules or browser security policies to block unexpected redirect URLs issued by TeamCity.

Generated by OpenCVE AI on May 29, 2026 at 19:37 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 29 May 2026 20:30:00 +0000

Type Values Removed Values Added
First Time appeared Jetbrains
Jetbrains teamcity
Vendors & Products Jetbrains
Jetbrains teamcity
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Fri, 29 May 2026 20:00:00 +0000

Type Values Removed Values Added
Title JetBrains TeamCity SAML Plugin Open Redirect Vulnerability

Fri, 29 May 2026 18:30:00 +0000

Type Values Removed Values Added
Description In JetBrains TeamCity before 2026.1 open redirect in the SAML plugin was possible
Weaknesses CWE-601
References
Metrics cvssV3_1

{'score': 3.1, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N'}

Subscriptions

Jetbrains Teamcity
cve-icon MITRE

Status: PUBLISHED

Assigner: JetBrains

Published:

Updated: 2026-05-29T19:28:34.828Z

Reserved: 2026-05-29T18:07:58.325Z

Link: CVE-2026-49380

cve-icon Vulnrichment

Updated: 2026-05-29T19:28:29.250Z

cve-icon NVD

Status : Undergoing Analysis

Published: 2026-05-29T19:16:27.990

Modified: 2026-05-29T20:11:15.977

Link: CVE-2026-49380

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-29T20:15:06Z

Weaknesses