Jetbrains Teamcity Luki w zabezpieczeniach

Oś czasu

Ostatni rok

Wersja

2020.2.0	15
2020.2.1	15
2020.2.2	11
2019.1.1	9
2019.1.0	8

Przeciwdziałanie

Official Fix	155
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	4

Wykorzystywanie

High	0
Functional	0
Proof-of-Concept	2
Unproven	0
Not Defined	157

Wektor dostępu

Not Defined	0
Physical	0
Local	3
Adjacent	37
Network	119

Uwierzytelnianie

Not Defined	0
High	16
Low	90
None	53

Interakcja z użytkownikiem

Not Defined	0
Required	57
None	102

CVSSv3 Base

≤1	0
≤2	0
≤3	3
≤4	27
≤5	48
≤6	50
≤7	18
≤8	5
≤9	7
≤10	1

CVSSv3 Temp

≤1	0
≤2	0
≤3	3
≤4	27
≤5	53
≤6	49
≤7	14
≤8	5
≤9	7
≤10	1

VulDB

≤1	0
≤2	0
≤3	10
≤4	43
≤5	43
≤6	35
≤7	15
≤8	12
≤9	0
≤10	1

NVD

≤1	0
≤2	0
≤3	1
≤4	0
≤5	8
≤6	33
≤7	24
≤8	10
≤9	3
≤10	8

CNA

≤1	0
≤2	0
≤3	2
≤4	4
≤5	35
≤6	11
≤7	6
≤8	2
≤9	0
≤10	4

Sprzedawca

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploit 0-day

<1k	40
<2k	93
<5k	26
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Wykorzystaj dzisiaj

<1k	159
<2k	0
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Affected Versions (56): 9, 9.0.1, 2018.2, 2018.2.1, 2018.2.2, 2018.2.3, 2018.2.4, 2019.0, 2019.1, 2019.1.1, 2019.1.2, 2019.1.3, 2019.1.4, 2019.2, 2019.2.1, 2019.2.2, 2020.1, 2020.1.1, 2020.1.2, 2020.1.3, 2020.1.4, 2020.2, 2020.2.1, 2020.2.2, 2020.2.3, 2021.0, 2021.1, 2021.2, 2022.0, 2022.1, 2022.2, 2022.3, 2022.4, 2022.5, 2022.6, 2022.7, 2022.8, 2022.9, 2022.10, 2022.10.1, 2023.0, 2023.05, 2023.1, 2023.2, 2023.3, 2023.4, 2023.5, 2023.6, 2023.7, 2023.8, 2023.9, 2023.10, 2023.11, 2023.11.1, 2023.11.2, 2023.11.3

Opublikowano	Base	Temp	Słaby punkt	0day	Dzisiaj	Wyk	Prz	CTI	CVE
2024-03-28	5.0	4.9	JetBrains TeamCity Maven Build Steps Detector XML External Entity	$0-$5k	$0-$5k	Not Defined	Official Fix	0.03	CVE-2024-31139
2024-03-28	4.0	4.0	JetBrains TeamCity Agent Distribution Settings cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.02	CVE-2024-31138
2024-03-28	5.5	5.4	JetBrains TeamCity Space Connection Configuration cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.03	CVE-2024-31137
2024-03-28	3.9	3.9	JetBrains TeamCity Tools nieznana luka	$0-$5k	$0-$5k	Not Defined	Official Fix	0.03	CVE-2024-31140
2024-03-28	6.5	6.4	JetBrains TeamCity 2FA Remote Code Execution	$0-$5k	$0-$5k	Not Defined	Official Fix	0.03	CVE-2024-31136
2024-03-28	5.2	5.1	JetBrains TeamCity Login Page Redirect	$0-$5k	$0-$5k	Not Defined	Official Fix	0.03	CVE-2024-31135
2024-03-28	5.4	5.3	JetBrains TeamCity User Registration privilege escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.03	CVE-2024-31134
2024-03-21	4.2	4.1	JetBrains TeamCity Agent Process privilege escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2024-29880
2024-03-06	5.5	5.4	JetBrains TeamCity URL privilege escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2024-28174
2024-03-06	4.3	4.2	JetBrains TeamCity Build Parameter privilege escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2024-28173
2024-03-04	8.5	8.4	JetBrains TeamCity weak authentication	$0-$5k	$0-$5k	Not Defined	Official Fix	0.05	CVE-2024-27198
2024-03-04	7.3	7.1	JetBrains TeamCity directory traversal	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2024-27199
2024-02-06	4.5	4.5	JetBrains TeamCity Agent Distribution cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.02	CVE-2024-24937
2024-02-06	4.6	4.6	JetBrains TeamCity S3 Artifact Storage Plugin Endpoint privilege escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.02	CVE-2024-24936
2024-02-06	5.3	5.2	JetBrains TeamCity JAR Archive directory traversal	$0-$5k	$0-$5k	Not Defined	Official Fix	0.08	CVE-2024-24942
2024-02-06	5.3	5.2	JetBrains TeamCity Kotlin DSL Documentation directory traversal	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2024-24938
2024-02-06	9.8	9.6	JetBrains TeamCity weak authentication	$0-$5k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2024-23917
2023-12-15	5.8	5.7	JetBrains TeamCity Login cross site request forgery	$0-$5k	$0-$5k	Not Defined	Official Fix	0.03	CVE-2023-50870
2023-09-19	3.8	3.7	JetBrains TeamCity Configuration cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2023-43566
2023-09-19	8.5	8.2	JetBrains TeamCity weak authentication	$0-$5k	$0-$5k	Proof-of-Concept	Official Fix	0.04	CVE-2023-42793
2023-08-25	2.9	2.9	JetBrains TeamCity User Registration cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2023-41250
2023-08-25	4.7	4.7	JetBrains TeamCity Build Step Copy cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2023-41249
2023-08-25	4.0	4.0	JetBrains TeamCity Cloud Profiles Configuration cross site scripting	$0-$5k	Obliczenie	Not Defined	Official Fix	0.00	CVE-2023-41248
2023-07-26	4.7	4.7	JetBrains TeamCity GitHub Integration cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2023-39175
2023-07-26	5.4	5.3	JetBrains TeamCity denial of service	$0-$5k	$0-$5k	Not Defined	Official Fix	0.02	CVE-2023-39174

Jetbrains Teamcity Luki w zabezpieczeniach

Oś czasu

Ostatni rok

Wersja

Przeciwdziałanie

Wykorzystywanie

Wektor dostępu

Uwierzytelnianie

Interakcja z użytkownikiem

C3BM Index

Ostatni rok

CVSSv3 Base

CVSSv3 Temp

VulDB

NVD

CNA

Sprzedawca

Research

Exploit 0-day

Wykorzystaj dzisiaj

Wykorzystaj wielkość rynku

Ostatni rok

🔴 CTI Zajęcia

🔒 Login Required

Do you know our Splunk app?