CVE-2024-41826
CVSS 3.1 Score 4.8 of 10 (medium)
Details
Published Jul 22, 2024
Updated: Aug 7, 2024
CWE ID 79
Summary
CVE-2024-41826 is a newly disclosed Cross-Site Scripting (XSS) vulnerability affecting JetBrains TeamCity versions prior to 2024.07. Hackers could exploit this flaw to inject malicious scripts into the Show Connection page, potentially stealing user data or taking control of their accounts. This vulnerability poses a serious security risk, as XSS attacks can lead to significant data breaches and unauthorized access. To mitigate this risk, TeamCity users are strongly advised to upgrade to the latest version as soon as possible.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- TeamCity
Affected Vendors
- JetBrains