JetBrains TeamCity 2018.2.4. Information Exposure Vulnerability 

Summary

An issue was discovered in JetBrains TeamCity 2018.2.4.

 

Credit:

The information has been provided by Robert Demmer

The original article can be found at: https://blog.jetbrains.com/blog/2019/09/26/jetbrains-security-bulletin-q2-2019/

 


Details

A TeamCity Project administrator could get access to potentially confidential server-level data.

Vulnerable Systems: 

TeamCity before 2018.2.5 and 2019.1.

CVE Information:

CVE-2019-15035

Disclosure Timeline:

Published Date:10/01/2019