CVEs and Security Vulnerabilities CVEs and Security Vulnerabilities

Filtered by vendor Jetbrains Subscriptions

Total 533 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2025-54537	1 Jetbrains	1 Teamcity	2025-07-29	5.5 Medium
In JetBrains TeamCity before 2025.07 user credentials were stored in plain text in memory snapshots
CVE-2025-23385	1 Jetbrains	3 Dottrace, Resharper, Rider	2025-07-12	7.8 High
In JetBrains ReSharper before 2024.3.4, 2024.2.8, and 2024.1.7, Rider before 2024.3.4, 2024.2.8, and 2024.1.7, dotTrace before 2024.3.4, 2024.2.8, and 2024.1.7, ETW Host Service before 16.43, Local Privilege Escalation via the ETW Host Service was possible
CVE-2025-52875	1 Jetbrains	1 Teamcity	2025-06-27	5.4 Medium
In JetBrains TeamCity before 2025.03.3 a DOM-based XSS at the Performance Monitor page was possible
CVE-2025-52878	1 Jetbrains	1 Teamcity	2025-06-27	4.3 Medium
In JetBrains TeamCity before 2025.03.3 usernames were exposed to the users without proper permissions
CVE-2025-52877	1 Jetbrains	1 Teamcity	2025-06-27	4.8 Medium
In JetBrains TeamCity before 2025.03.3 reflected XSS on diskUsageBuildsStats page was possible
CVE-2025-52879	1 Jetbrains	1 Teamcity	2025-06-27	4.8 Medium
In JetBrains TeamCity before 2025.03.3 reflected XSS in the NPM Registry integration was possible
CVE-2025-52876	1 Jetbrains	1 Teamcity	2025-06-25	5.4 Medium
In JetBrains TeamCity before 2025.03.3 reflected XSS on the favoriteIcon page was possible
CVE-2024-22370	1 Jetbrains	1 Youtrack	2025-06-17	4.6 Medium
In JetBrains YouTrack before 2023.3.22666 stored XSS via markdown was possible
CVE-2024-27199	1 Jetbrains	1 Teamcity	2025-05-30	7.3 High
In JetBrains TeamCity before 2023.11.4 path traversal allowing to perform limited admin actions was possible
CVE-2025-47851	1 Jetbrains	1 Teamcity	2025-05-29	4.8 Medium
In JetBrains TeamCity before 2025.03.2 stored XSS via GitHub Checks Webhook was possible
CVE-2025-47852	1 Jetbrains	1 Teamcity	2025-05-29	4.8 Medium
In JetBrains TeamCity before 2025.03.2 stored XSS via YouTrack integration was possible
CVE-2025-47853	1 Jetbrains	1 Teamcity	2025-05-29	4.8 Medium
In JetBrains TeamCity before 2025.03.2 stored XSS via Jira integration was possible
CVE-2025-47854	1 Jetbrains	1 Teamcity	2025-05-29	4.3 Medium
In JetBrains TeamCity before 2025.03.2 open redirect was possible on editing VCS Root page
CVE-2025-26492	1 Jetbrains	1 Teamcity	2025-05-16	7.7 High
In JetBrains TeamCity before 2024.12.2 improper Kubernetes connection settings could expose sensitive resources
CVE-2025-26493	1 Jetbrains	1 Teamcity	2025-05-16	4.6 Medium
In JetBrains TeamCity before 2024.12.2 several DOM-based XSS were possible on the Code Inspection Report tab
CVE-2025-31139	1 Jetbrains	1 Teamcity	2025-05-16	4.3 Medium
In JetBrains TeamCity before 2025.03 base64 encoded password could be exposed in build log
CVE-2025-31140	1 Jetbrains	1 Teamcity	2025-05-16	4.6 Medium
In JetBrains TeamCity before 2025.03 stored XSS was possible on Cloud Profiles page
CVE-2025-31141	1 Jetbrains	1 Teamcity	2025-05-16	2.7 Low
In JetBrains TeamCity before 2025.03 exception could lead to credential leakage on Cloud Profiles page
CVE-2025-46432	1 Jetbrains	1 Teamcity	2025-05-16	4.3 Medium
In JetBrains TeamCity before 2025.03.1 base64-encoded credentials could be exposed in build logs
CVE-2025-46433	1 Jetbrains	1 Teamcity	2025-05-16	4.9 Medium
In JetBrains TeamCity before 2025.03.1 improper path validation in loggingPreset parameter was possible

« first previous Page 4 of 27. next last »