CVE-2024-56354

Name of the Vulnerable Software and Affected Versions: JetBrains TeamCity versions prior to 2024.12

Description: The issue is related to insufficient protection of registration data in JetBrains TeamCity, a continuous integration and continuous delivery (CI/CD) system. This allows a remote attacker to disclose protected information. Users with view settings permission could access the password field value.

Recommendations: For versions prior to 2024.12, update to version 2024.12 or later to resolve the issue. As a temporary workaround, consider restricting access to the view settings permission to minimize the risk of exploitation.