This page contains information about resolved security issues, including description, severity, assigned CVEs, and the product versions in which they were resolved.
Product | Description | Severity | Resolved In | CWE | CVE |
---|---|---|---|---|---|
TeamCity | A token with limited permissions could be used to gain full account access (TW-82485) | Medium | 2023.05.2 | CWE-266 | CVE-2023-39173 |
TeamCity | A ReDoS attack was possible via integration with issue trackers (TW-82283) | Medium | 2023.05.2 | CWE-1333 | CVE-2023-39174 |
TeamCity | Reflected XSS via GitHub integration was possible (TW-82472) | Medium | 2023.05.2 | CWE-79 | CVE-2023-39175 |