vulnerability

JetBrains TeamCity: CVE-2021-43197: Email notifications could include unescaped HTML (TW-71981)

Try Surface Command
Back to search
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:N/I:P/A:N)
Published
Nov 9, 2021
Added
Oct 15, 2024
Modified
Sep 4, 2025

Description

In JetBrains TeamCity before 2021.1.2, email notifications could include unescaped HTML for XSS.

Solution

jetbrains-teamcity-upgrade-latest

References

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today