CVE-2024-56348
MEDIUMJetbrains Teamcity < 2024.12 - Incorrect Authorization
Title source: ruleDescription
In JetBrains TeamCity before 2024.12 improper access control allowed viewing details of unauthorized agents
Exploits (1)
nomisec
WORKING POC
1 stars
by joshuavanderpoll · poc
https://github.com/joshuavanderpoll/cve-2024-56348
Scores
CVSS v3
4.3
EPSS
0.0001
EPSS Percentile
0.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Classification
CWE
CWE-863
Status
published
Affected Products (1)
jetbrains/teamcity
< 2024.12
Timeline
Published
Dec 20, 2024
Tracked Since
Feb 18, 2026