Threat-Lens CVE Hub

CVE-2025-54538

MEDIUM CVSS 5.5

Find Similar

In JetBrains TeamCity before 2025.07 password exposure was possible via command line in the "hg pull" command

jetbrains

CVE-2024-47161

MEDIUM CVSS 6.5

Find Similar

In JetBrains TeamCity before 2024.07.3 password could be exposed via Sonar runner REST API

jetbrains

CVE-2025-52878

MEDIUM CVSS 4.3

Find Similar

In JetBrains TeamCity before 2025.03.3 usernames were exposed to the users without proper permissions

jetbrains

CVE-2024-56354

MEDIUM CVSS 4.9

Find Similar

In JetBrains TeamCity before 2024.12 password field value were accessible to users with view settings permission

jetbrains

CVE-2025-31139

MEDIUM CVSS 6.5

Find Similar

In JetBrains TeamCity before 2025.03 base64 encoded password could be exposed in build log

jetbrains

CVE-2024-41824

MEDIUM CVSS 6.5

Find Similar

In JetBrains TeamCity before 2024.07 parameters of the "password" type could leak into the build log in some specific cases

jetbrains

CVE-2025-54533

MEDIUM CVSS 4.3

Find Similar

In JetBrains TeamCity before 2025.07 improper access control allowed disclosure of build settings via VCS configuration

jetbrains

CVE-2024-56348

MEDIUM CVSS 4.3

Find Similar

In JetBrains TeamCity before 2024.12 improper access control allowed viewing details of unauthorized agents

jetbrains

CVE-2025-54532

MEDIUM CVSS 4.3

Find Similar

In JetBrains TeamCity before 2025.07 improper access control allowed disclosure of build settings via snapshot dependencies

jetbrains

CVE-2025-54537

MEDIUM CVSS 5.5

Find Similar

In JetBrains TeamCity before 2025.07 user credentials were stored in plain text in memory snapshots

jetbrains

CVE-2026-49377

MEDIUM CVSS 4.3

Find Similar

In JetBrains TeamCity before 2025.11.2 exposure of sensitive data via default agent parameters

jetbrains

CVE-2024-43114

HIGH CVSS 7.8

Find Similar

In JetBrains TeamCity before 2024.07.1 possible privilege escalation due to incorrect directory permissions

jetbrains

CVE-2025-57734

MEDIUM CVSS 6.5

Find Similar

In JetBrains TeamCity before 2025.07.1 aWS credentials were exposed in Docker script files

jetbrains

CVE-2025-59457

HIGH CVSS 7.7

Find Similar

In JetBrains TeamCity before 2025.07.2 missing Git URL validation allowed credential leakage on Windows

jetbrains

CVE-2025-54530

CRITICAL CVSS 9.8

Find Similar

In JetBrains TeamCity before 2025.07 privilege escalation was possible due to incorrect directory permissions

jetbrains

CVE-2025-68267

MEDIUM CVSS 6.5

Find Similar

In JetBrains TeamCity before 2025.11.1 excessive privileges were possible due to storing GitHub personal access token instead of an installation token

jetbrains

CVE-2025-67740

MEDIUM CVSS 5.3

Find Similar

In JetBrains TeamCity before 2025.11 improper access control could expose GitHub App token's metadata

jetbrains

CVE-2024-56350

MEDIUM CVSS 4.3

Find Similar

In JetBrains TeamCity before 2024.12 build credentials allowed unauthorized viewing of projects

jetbrains

CVE-2025-31141

HIGH CVSS 7.5

Find Similar

In JetBrains TeamCity before 2025.03 exception could lead to credential leakage on Cloud Profiles page

jetbrains

CVE-2026-49379

MEDIUM CVSS 6.5

Find Similar

In JetBrains TeamCity before 2026.1 credentials could be exposed in thread names

jetbrains