← volver
CVE-2015-1313

CVE-2015-1313

EPSS 0.5%
JetBrains TeamCity 8 and 9 before 9.0.2 allows bypass of account-creation restrictions via a crafted request because the required request data can be deduced by reading HTML and JavaScript files that are returned to the web browser after an initial unauthenticated request.
Productos afectados
JetBrains · TeamCity

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://beyondbinary.io/articles/teamcity-account-creation/https://www.jetbrains.com/teamcity/download/