In JetBrains TeamCity before 2023.05.2 a token with limited permissions could be used to gain full account access
References
Link | Resource |
---|---|
https://www.jetbrains.com/privacy-security/issues-fixed/ | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: JetBrains
Published: 2023-07-25T14:45:43.929Z
Updated: 2023-07-25T14:45:43.929Z
Reserved: 2023-07-25T14:44:43.718Z
Link: CVE-2023-39173
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-07-25T15:15:13.693
Modified: 2023-08-01T01:02:33.797
Link: CVE-2023-39173
JSON object: View
Redhat Information
No data.
CWE