CVE-2022-24335 - OpenCVE

JetBrains TeamCity before 2021.2 was vulnerable to a Time-of-check/Time-of-use (TOCTOU) race-condition attack in agent registration via XML-RPC.

No CVSS v3.0

AV:N/AC:M/Au:N/C:P/I:P/A:P

Vendors	Products
Jetbrains	Teamcity

Configuration 1 [-]

cpe:2.3:a:jetbrains:teamcity:*:*:*:*:*:*:*:*

References

Link	Resource
https://blog.jetbrains.com	Vendor Advisory
https://blog.jetbrains.com/blog/2022/02/08/jetbrains-security-bulletin-q4-2021/	Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2022-02-25T14:35:21

Updated: 2022-02-25T14:35:21

Reserved: 2022-02-02T00:00:00

Link: CVE-2022-24335

JSON object: View

NVD Information

Status : Analyzed

Published: 2022-02-25T15:15:10.203

Modified: 2022-03-04T02:23:05.533

Link: CVE-2022-24335

JSON object: View

Redhat Information

No data.

CWE