CVE-2024-28173

Name of the Vulnerable Software and Affected Versions JetBrains TeamCity versions 2023.11 through 2023.11.4

Description The issue is related to the disclosure of information during data transmission in the JetBrains TeamCity continuous integration and continuous delivery (CI/CD) system. This could allow a remote attacker to gain unauthorized access to protected information. The problem specifically involves custom build parameters of the "password" type being disclosed.

Recommendations For versions 2023.11 through 2023.11.4, update to a version outside of this range to mitigate the risk of custom build parameter disclosure. At the moment, there is no information about a newer version that contains a fix for this vulnerability.