CVE-2024-39879

Name of the Vulnerable Software and Affected Versions: JetBrains TeamCity versions prior to 2024.03.3

Description: The issue is related to insufficient protection of registration data in the EC2 Cloud Profile module of the JetBrains TeamCity continuous integration and delivery (CI/CD) system. Exploitation of this issue could allow a remote attacker to gain unauthorized access to protected information.

Recommendations: For versions prior to 2024.03.3, update to version 2024.03.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the EC2 Cloud Profile settings to minimize the risk of exploitation.