CVSS 3.1 Score 5.9 of 10 (medium)


Published Mar 28, 2024
CWE ID 611


CVE-2024-31139 is a vulnerability in JetBrains TeamCity before 2024.03 that allows for xXE (XML External Entity) attacks in the Maven build steps detector. The vulnerability has a base severity of MEDIUM and a base score of 5.9 according to the CVSS v3.1 rating system. It requires HIGH privileges to exploit and has no user interaction requirement, making it a potential threat over a network. The impact of this vulnerability is HIGH in terms of confidentiality as it can lead to unauthorized access to sensitive information. The CVE ID is associated with CWE-611, which refers to the improper restriction of XML External Entity Reference. Remediation measures are not mentioned in the provided information.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-31139 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options