CVE-2022-25263 — CVSS 9.8 (critical): JetBrains TeamCity before 2021.2.3 was vulnerable to OS command injection in the Agent Push feature configuration.
CVE-2021-43200 — CVSS 9.8 (critical): In JetBrains TeamCity before 2021.1.2, permission checks in the Agent Push functionality were insufficient.
CVE-2019-15039 — CVSS 9.8 (critical): An issue was discovered in JetBrains TeamCity 2018.2.4. It had a possible remote code execution issue. This was fixed in TeamCity 2019.1.
CVE-2021-31912 — CVSS 8.8 (high): In JetBrains TeamCity before 2020.2.3, account takeover was potentially possible during a password reset.
CVE-2026-44413 — CVSS 8.2 (high): In JetBrains TeamCity before 2026.1 2025.11.5 authenticated users could expose server API to unauthorised access
CVE-2024-36470 — CVSS 8.1 (high): In JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5 authentication bypass was possible in specific edge cases
CVE-2022-24335 — CVSS 8.1 (high): JetBrains TeamCity before 2021.2 was vulnerable to a Time-of-check/Time-of-use (TOCTOU) race-condition attack in agent registration via…
CVE-2025-54531 — CVSS 7.7 (high): In JetBrains TeamCity before 2025.07 path traversal was possible via plugin unpacking on Windows
CVE-2025-26492 — CVSS 7.7 (high): In JetBrains TeamCity before 2024.12.2 improper Kubernetes connection settings could expose sensitive resources
CVE-2025-59457 — CVSS 7.7 (high): In JetBrains TeamCity before 2025.07.2 missing Git URL validation allowed credential leakage on Windows
CVE-2026-49374 — CVSS 7.6 (high): In JetBrains TeamCity before 2026.1 improper permission checks exposed build configuration parameters
CVE-2021-37545 — CVSS 7.5 (high): In JetBrains TeamCity before 2021.1.1, insufficient authentication checks for agent requests were made.
CVE-2022-25264 — CVSS 7.5 (high): In JetBrains TeamCity before 2021.2.3, environment variables of the "password" type could be logged in some cases.
CVE-2022-24341 — CVSS 7.5 (high): In JetBrains TeamCity before 2021.2.1, editing a user account to change its password didn't terminate sessions of the edited user.
CVE-2021-31913 — CVSS 7.5 (high): In JetBrains TeamCity before 2020.2.3, insufficient checks of the redirect_uri were made during GitHub SSO token exchange.
CVE-2019-12841 — CVSS 7.5 (high): Incorrect handling of user input in ZIP extraction was detected in JetBrains TeamCity. The issue was fixed in TeamCity 2018.2.2.
CVE-2026-49372 — CVSS 7.5 (high): In JetBrains TeamCity before 2026.1, 2025.11.5 unauthenticated SSRF via build status was possible
CVE-2025-54530 — CVSS 7.5 (high): In JetBrains TeamCity before 2025.07 privilege escalation was possible due to incorrect directory permissions
CVE-2020-35667 — CVSS 7.5 (high): JetBrains TeamCity Plugin before 2020.2.85695 SSRF. Vulnerability that could potentially expose user credentials.
CVE-2020-7909 — CVSS 7.5 (high): In JetBrains TeamCity before 2019.1.5, some server-stored passwords could be shown via the web UI.
CVE-2025-57732 — CVSS 7.5 (high): In JetBrains TeamCity before 2025.07.1 privilege escalation was possible due to incorrect directory ownership
CVE-2019-15042 — CVSS 7.5 (high): An issue was discovered in JetBrains TeamCity 2018.2.4. It had no SSL certificate validation for some external https connections. This was…
CVE-2021-43196 — CVSS 7.5 (high): In JetBrains TeamCity before 2021.1, information disclosure via the Docker Registry connection dialog is possible.
CVE-2019-15038 — CVSS 7.5 (high): An issue was discovered in JetBrains TeamCity 2018.2.4. The TeamCity server was not using some security-related HTTP headers. The issue was…
CVE-2024-41827 — CVSS 7.4 (high): In JetBrains TeamCity before 2024.07 access tokens could continue working after deletion or expiration
CVE-2024-31136 — CVSS 7.4 (high): In JetBrains TeamCity before 2024.03 2FA could be bypassed by providing a special URL parameter
CVE-2019-15036 — CVSS 7.2 (high): An issue was discovered in JetBrains TeamCity 2018.2.4. A TeamCity Project administrator could execute any command on the server machine…
CVE-2026-49373 — CVSS 7.1 (high): In JetBrains TeamCity before 2026.1 remote code execution was possible via Perforce connection settings
CVE-2024-36365 — CVSS 6.8 (medium): In JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5, 2024.03.2 a third-party agent could impersonate a cloud agent
CVE-2022-46831 — CVSS 6.6 (medium): In JetBrains TeamCity between 2022.10 and 2022.10.1 connecting to AWS using the "Default Credential Provider Chain" allowed TeamCity…
CVE-2025-68267 — CVSS 6.5 (medium): In JetBrains TeamCity before 2025.11.1 excessive privileges were possible due to storing GitHub personal access token instead of an…
CVE-2020-15828 — CVSS 6.5 (medium): In JetBrains TeamCity before 2020.1.1, project parameter values can be retrieved by a user without appropriate permissions.
CVE-2020-11689 — CVSS 6.5 (medium): In JetBrains TeamCity before 2019.2.1, a user without appropriate permissions was able to import settings from the settings.kts file.
CVE-2024-36377 — CVSS 6.5 (medium): In JetBrains TeamCity before 2024.03.2 certain TeamCity API endpoints did not check user permissions
CVE-2024-31134 — CVSS 6.5 (medium): In JetBrains TeamCity before 2024.03 authenticated users without administrative permissions could register other users when…
CVE-2024-36376 — CVSS 6.5 (medium): In JetBrains TeamCity before 2024.03.2 users could perform actions that should not be available to them based on their permissions
CVE-2015-1313 — CVSS 6.5 (medium): JetBrains TeamCity 8 and 9 before 9.0.2 allows bypass of account-creation restrictions via a crafted request because the required request…
CVE-2025-24461 — CVSS 6.5 (medium): In JetBrains TeamCity before 2024.12.1 decryption of connection secrets without proper permissions was possible via Test Connection endpoint
CVE-2022-24337 — CVSS 6.5 (medium): In JetBrains TeamCity before 2021.2, health items of pull requests were shown to users who lacked appropriate permissions.
CVE-2022-44624 — CVSS 6.5 (medium): In JetBrains TeamCity version before 2022.10, Password parameters could be exposed in the build log if they contained special characters
CVE-2024-36362 — CVSS 6.5 (medium): In JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5, 2024.03.2 path traversal allowing to read files from server was…
CVE-2024-36364 — CVSS 6.5 (medium): In JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5 improper access control in Pull Requests and Commit status…
CVE-2022-44623 — CVSS 6.5 (medium): In JetBrains TeamCity version before 2022.10, Project Viewer could see scrambled secure values in the MetaRunner settings
CVE-2024-41824 — CVSS 6.4 (medium): In JetBrains TeamCity before 2024.07 parameters of the "password" type could leak into the build log in some specific cases
CVE-2019-12844 — CVSS 6.1 (medium): A possible stored JavaScript injection was detected on one of the JetBrains TeamCity pages. The issue was fixed in TeamCity 2018.2.3.
CVE-2019-15848 — CVSS 6.1 (medium): JetBrains TeamCity 2019.1 and 2019.1.1 allows cross-site scripting (XSS), potentially making it possible to send an arbitrary HTTP request…
CVE-2019-12842 — CVSS 6.1 (medium): A reflected XSS on a user page was detected on one of the JetBrains TeamCity pages. The issue was fixed in TeamCity 2018.2.2.
CVE-2019-12843 — CVSS 6.1 (medium): A possible stored JavaScript injection requiring a deliberate server administrator action was detected. The issue was fixed in JetBrains…
CVE-2019-15037 — CVSS 6.1 (medium): An issue was discovered in JetBrains TeamCity 2018.2.4. It had several XSS vulnerabilities on the settings pages. The issues were fixed in…
CVE-2024-56356 — CVSS 5.9 (medium): In JetBrains TeamCity before 2024.12 insecure XMLParser configuration could lead to potential XXE attack
CVE-2024-36378 — CVSS 5.9 (medium): In JetBrains TeamCity before 2024.03.2 server was susceptible to DoS attacks with incorrect auth tokens
CVE-2024-28174 — CVSS 5.8 (medium): In JetBrains TeamCity before 2023.11.4 presigned URL generation requests in S3 Artifact Storage plugin were authorized improperly
CVE-2025-54535 — CVSS 5.8 (medium): In JetBrains TeamCity before 2025.07 password reset and email verification tokens were using weak hashing algorithms
CVE-2024-36366 — CVSS 5.4 (medium): In JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5 an XSS could be executed via certain report grouping and filtering…
CVE-2019-12845 — CVSS 5.3 (medium): The generated Kotlin DSL settings allowed usage of an unencrypted connection for resolving artifacts. The issue was fixed in JetBrains…
CVE-2019-18363 — CVSS 5.3 (medium): In JetBrains TeamCity before 2019.1.2, access could be gained to the history of builds of a deleted build configuration under some…
CVE-2019-18366 — CVSS 5.3 (medium): In JetBrains TeamCity before 2019.1.2, secure values could be exposed to users with the "View build runtime parameters and data" permission.
CVE-2019-18367 — CVSS 5.3 (medium): In JetBrains TeamCity before 2019.1.2, a non-destructive operation could be performed by a user without the corresponding permissions.
CVE-2020-27629 — CVSS 5.3 (medium): In JetBrains TeamCity before 2020.1.5, secure dependency parameters could be not masked in depending builds when there are no internal…
CVE-2021-31907 — CVSS 5.3 (medium): In JetBrains TeamCity before 2020.2.2, permission checks for changing TeamCity plugins were implemented improperly.
CVE-2021-37546 — CVSS 5.3 (medium): In JetBrains TeamCity before 2021.1, an insecure key generation mechanism for encrypted properties was used.
CVE-2021-43199 — CVSS 5.3 (medium): In JetBrains TeamCity before 2021.1.2, permission checks in the Create Patch functionality are insufficient.
CVE-2021-43201 — CVSS 5.3 (medium): In JetBrains TeamCity before 2021.1.3, a newly created project could take settings from an already deleted project.
CVE-2022-24334 — CVSS 5.3 (medium): In JetBrains TeamCity before 2021.2.1, the Agent Push feature allowed selection of any private key on the server.
CVE-2022-24336 — CVSS 5.3 (medium): In JetBrains TeamCity before 2021.2.1, an unauthenticated attacker can cancel running builds via an XML-RPC request to the TeamCity server.
CVE-2023-34228 — CVSS 5.3 (medium): In JetBrains TeamCity before 2023.05 authentication checks were missing – 2FA was not checked for some sensitive account actions
CVE-2024-24938 — CVSS 5.3 (medium): In JetBrains TeamCity before 2023.11.2 limited directory traversal was possible in the Kotlin DSL documentation
CVE-2024-39879 — CVSS 5.0 (medium): In JetBrains TeamCity before 2024.03.3 application token could be exposed in EC2 Cloud Profile settings
CVE-2014-10002 — CVSS 5.0 (medium): Unspecified vulnerability in JetBrains TeamCity before 8.1 allows remote attackers to obtain sensitive information via unknown vectors.
CVE-2019-15035 — CVSS 4.9 (medium): An issue was discovered in JetBrains TeamCity 2018.2.4. A TeamCity Project administrator could get access to potentially confidential…
CVE-2025-46433 — CVSS 4.9 (medium): In JetBrains TeamCity before 2025.03.1 improper path validation in loggingPreset parameter was possible
CVE-2020-11938 — CVSS 4.9 (medium): In JetBrains TeamCity 2018.2 through 2019.2.1, a project administrator was able to see scrambled password parameters used in a project. The…
CVE-2024-47949 — CVSS 4.9 (medium): In JetBrains TeamCity before 2024.07.3 path traversal allowed backup file write to arbitrary location
CVE-2024-47948 — CVSS 4.9 (medium): In JetBrains TeamCity before 2024.07.3 path traversal leading to information disclosure was possible via server backups
CVE-2023-38066 — CVSS 4.6 (medium): In JetBrains TeamCity before 2023.05.1 reflected XSS via the Referer header was possible during artifact downloads
CVE-2024-36363 — CVSS 4.6 (medium): In JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5 several Stored XSS in code inspection reports were possible
CVE-2024-36367 — CVSS 4.6 (medium): In JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5 stored XSS via third-party reports was possible
CVE-2024-36368 — CVSS 4.6 (medium): In JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5 reflected XSS via OAuth provider configuration was possible
CVE-2024-36369 — CVSS 4.6 (medium): In JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5 stored XSS via issue tracker integration was possible
CVE-2024-36370 — CVSS 4.6 (medium): In JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5 stored XSS via OAuth connection settings was possible
CVE-2024-36371 — CVSS 4.6 (medium): In JetBrains TeamCity before 2023.05.6, 2023.11.5 stored XSS in Commit status publisher was possible
CVE-2024-56355 — CVSS 4.6 (medium): In JetBrains TeamCity before 2024.12 missing Content-Type header in RemoteBuildLogController response could lead to XSS