PT-2021-11823 · Jetbrains · Jetbrains Teamcity Plugin+1

Jonathan Leitschuh

Published

2021-02-03

Updated

2021-02-05

CVE-2020-35667

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions: JetBrains TeamCity Plugin versions prior to 2020.2.85695

Description: The issue is related to a Server-Side Request Forgery (SSRF) vulnerability that could potentially expose user credentials.

Recommendations: For versions prior to 2020.2.85695, update to version 2020.2.85695 or later to resolve the issue.

Fix

SSRF

Found an issue in the description? Have something to add? Feel free to write us 👾

CVE-2020-35667

Jetbrains Teamcity Plugin

Teamcity