CVE-2024-39878

In JetBrains TeamCity before 2024.03.3 private key could be exposed via testing GitHub App Connection
References
Configurations

Configuration 1 (hide)

cpe:2.3:a:jetbrains:teamcity:*:*:*:*:*:*:*:*

History

17 Sep 2024, 18:50

Type Values Removed Values Added
First Time Jetbrains teamcity
Jetbrains
References () https://www.jetbrains.com/privacy-security/issues-fixed/ - () https://www.jetbrains.com/privacy-security/issues-fixed/ - Vendor Advisory
CVSS v2 : unknown
v3 : 4.1
v2 : unknown
v3 : 5.3
CPE cpe:2.3:a:jetbrains:teamcity:*:*:*:*:*:*:*:*

02 Jul 2024, 12:09

Type Values Removed Values Added
Summary
  • (es) En JetBrains TeamCity antes de 2024.03.3, la clave privada podía exponerse mediante la prueba de conexión de la aplicación GitHub

01 Jul 2024, 17:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-07-01 17:15

Updated : 2024-09-17 18:50


NVD link : CVE-2024-39878

Mitre link : CVE-2024-39878

CVE.ORG link : CVE-2024-39878


JSON object : View

Products Affected

jetbrains

  • teamcity
CWE
CWE-522

Insufficiently Protected Credentials