CVE-2024-41829

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jul 22, 2024
Updated: Aug 14, 2024
CWE ID 287
CWE ID 303

Summary

CVE-2024-41829 is a newly disclosed vulnerability affecting JetBrains TeamCity versions prior to 2024.07. An attacker can exploit this issue by stealing an OAuth code for JetBrains Space through a maliciously crafted Space Application connection. This vulnerability could potentially allow unauthorized access to sensitive data or functionality within the affected TeamCity instance. It is strongly recommended that users upgrade to the latest version of TeamCity to mitigate this risk. Failure to do so may result in potential data breaches or unauthorized system access.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share