Description
In JetBrains TeamCity before 2026.1 stored XSS on the SAML login page was possible
Published: 2026-05-29
Score: 3.4 Low
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

JetBrains TeamCity versions prior to 2026.1 implement a stored cross‑site scripting (XSS) flaw on the SAML login page. The vulnerability allows an attacker to inject malicious scripts that are persisted and subsequently delivered to users who view the page. This can lead to session hijacking, credential theft, or page defacement, directly affecting confidentiality and integrity of user data. The weakness is classified as CWE‑79.

Affected Systems

JetBrains TeamCity is impacted. All installations using TeamCity before the 2026.1 release are vulnerable; no additional vendor or product variants are listed.

Risk and Exploitability

The CVSS score of 3.4 indicates a low severity score, and the EPSS score is currently unavailable, suggesting limited information about real‑world exploitation. The vulnerability is not recorded in the CISA KEV catalog. The likely attack vector is a stored XSS vector on the SAML login page, which would require an attacker to submit malicious input that gets stored by the application and later rendered to a victim’s browser. Without additional advanced exploitation requirements, the risk is primarily limited to the users who interact with the compromised login page.

Generated by OpenCVE AI on May 29, 2026 at 19:37 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade to JetBrains TeamCity 2026.1 or later, which removes the stored XSS flaw on the SAML login page.
  • If an upgrade is not immediately possible, disable SAML Single Sign‑On functionality until a patch is applied to prevent exploitation via the login page.
  • Ensure that any input fields on the TeamCity login interface are properly sanitized and that output encoding is applied before rendering user‑supplied content.

Generated by OpenCVE AI on May 29, 2026 at 19:37 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 29 May 2026 20:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Fri, 29 May 2026 20:00:00 +0000

Type Values Removed Values Added
Title Stored XSS Vulnerability on TeamCity SAML Login Page
First Time appeared Jetbrains
Jetbrains teamcity
Vendors & Products Jetbrains
Jetbrains teamcity

Fri, 29 May 2026 18:30:00 +0000

Type Values Removed Values Added
Description In JetBrains TeamCity before 2026.1 stored XSS on the SAML login page was possible
Weaknesses CWE-79
References
Metrics cvssV3_1

{'score': 3.4, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:N/A:N'}

Subscriptions

Jetbrains Teamcity
cve-icon MITRE

Status: PUBLISHED

Assigner: JetBrains

Published:

Updated: 2026-05-29T19:28:20.179Z

Reserved: 2026-05-29T18:07:58.810Z

Link: CVE-2026-49381

cve-icon Vulnrichment

Updated: 2026-05-29T19:28:12.344Z

cve-icon NVD

Status : Undergoing Analysis

Published: 2026-05-29T19:16:28.110

Modified: 2026-05-29T20:11:15.977

Link: CVE-2026-49381

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-29T19:45:06Z

Weaknesses