PT-2019-12665 · Jetbrains · Upsource+1
Publicado
2019-10-02
·
Atualizado
2021-11-04
·
CVE-2019-12156
CVSS v3.1
5.3
Média
| Vetor | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
JetBrains TeamCity versions prior to 2018.2.5
JetBrains UpSource versions prior to 2018.2 build 1293
Description
The issue allows server metadata to be exposed due to an error message that reflects the whole response back to the client.
Recommendations
For JetBrains TeamCity versions prior to 2018.2.5, update to version 2018.2.5 or later.
For JetBrains UpSource versions prior to 2018.2 build 1293, update to version 2018.2 build 1293 or later.
Correção
Generation of Error Message Containing Sensitive Information
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Teamcity
Upsource