PT-2020-12777 · Jetbrains · Teamcity
Published
2020-04-22
·
Updated
2020-04-27
·
CVE-2020-11689
CVSS v3.1
6.5
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
JetBrains TeamCity versions prior to 2019.2.1
Description
A user without appropriate permissions could import settings from the settings.kts file, indicating an issue with access control.
Recommendations
For versions prior to 2019.2.1, update to version 2019.2.1 or later to resolve the issue.
Fix
Incorrect Default Permissions
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Teamcity