PT-2021-19584 · Jetbrains · Teamcity

Published

2021-05-07

Updated

2021-05-14

CVE-2021-31909

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: JetBrains TeamCity versions prior to 2020.2.3

Description: The issue allows for argument injection, which can lead to remote code execution. This means an attacker could potentially execute malicious code on a remote server.

Recommendations: For versions prior to 2020.2.3, update to version 2020.2.3 or later to resolve the issue.

Fix

RCE

Argument Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-88

Related Identifiers

CVE-2021-31909

Affected Products

Teamcity

PT-2021-19584 · Jetbrains · Teamcity

CVE-2021-31909

Weakness Enumeration

Related Identifiers

Affected Products

References · 5