Threat-Lens CVE Hub

CVE-2026-49378

MEDIUM CVSS 4.3

Find Similar

In JetBrains TeamCity before 2026.1 credentials parameters were exposed via parameter autocompletion

jetbrains

CVE-2026-49379

MEDIUM CVSS 6.5

Find Similar

In JetBrains TeamCity before 2026.1 credentials could be exposed in thread names

jetbrains

CVE-2025-54537

MEDIUM CVSS 5.5

Find Similar

In JetBrains TeamCity before 2025.07 user credentials were stored in plain text in memory snapshots

jetbrains

CVE-2026-49374

HIGH CVSS 7.6

Find Similar

In JetBrains TeamCity before 2026.1 improper permission checks exposed build configuration parameters

jetbrains

CVE-2026-28195

MEDIUM CVSS 4.3

Find Similar

In JetBrains TeamCity before 2025.11.3 missing authorization allowed project developers to add parameters to build configurations

jetbrains

CVE-2024-41824

MEDIUM CVSS 6.5

Find Similar

In JetBrains TeamCity before 2024.07 parameters of the "password" type could leak into the build log in some specific cases

jetbrains

CVE-2025-46432

MEDIUM CVSS 6.5

Find Similar

In JetBrains TeamCity before 2025.03.1 base64-encoded credentials could be exposed in build logs

jetbrains

CVE-2026-49377

MEDIUM CVSS 4.3

Find Similar

In JetBrains TeamCity before 2025.11.2 exposure of sensitive data via default agent parameters

jetbrains

CVE-2025-31141

HIGH CVSS 7.5

Find Similar

In JetBrains TeamCity before 2025.03 exception could lead to credential leakage on Cloud Profiles page

jetbrains

CVE-2026-28196

LOW CVSS 2.3

Find Similar

In JetBrains TeamCity before 2025.11.3 disabling versioned settings left a credentials config on disk

jetbrains

CVE-2026-49376

MEDIUM CVSS 6.5

Find Similar

In JetBrains TeamCity before 2026.1 insufficient username validation in the SAML plugin

jetbrains

CVE-2025-57734

MEDIUM CVSS 6.5

Find Similar

In JetBrains TeamCity before 2025.07.1 aWS credentials were exposed in Docker script files

jetbrains

CVE-2025-46433

CRITICAL CVSS 9.8

Find Similar

In JetBrains TeamCity before 2025.03.1 improper path validation in loggingPreset parameter was possible

jetbrains

CVE-2025-54532

MEDIUM CVSS 4.3

Find Similar

In JetBrains TeamCity before 2025.07 improper access control allowed disclosure of build settings via snapshot dependencies

jetbrains

CVE-2026-44413

HIGH CVSS 7.5

Find Similar

In JetBrains TeamCity before 2026.1 2025.11.5 authenticated users could expose server API to unauthorised access

jetbrains

CVE-2024-47161

MEDIUM CVSS 6.5

Find Similar

In JetBrains TeamCity before 2024.07.3 password could be exposed via Sonar runner REST API

jetbrains

CVE-2025-54533

MEDIUM CVSS 4.3

Find Similar

In JetBrains TeamCity before 2025.07 improper access control allowed disclosure of build settings via VCS configuration

jetbrains

CVE-2025-52878

MEDIUM CVSS 4.3

Find Similar

In JetBrains TeamCity before 2025.03.3 usernames were exposed to the users without proper permissions

jetbrains

CVE-2025-59457

HIGH CVSS 7.7

Find Similar

In JetBrains TeamCity before 2025.07.2 missing Git URL validation allowed credential leakage on Windows

jetbrains

CVE-2026-49373

HIGH CVSS 8.8

Find Similar

In JetBrains TeamCity before 2026.1 remote code execution was possible via Perforce connection settings

jetbrains