vulnerability

JetBrains TeamCity: CVE-2023-34219: Improper permission checks allowed users without appropriate permissions to edit Build Configuration settings via REST API. Reported by Olof Lindberg (TW-80538)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:L/Au:S/C:N/I:P/A:N)	May 31, 2023	Oct 15, 2024	Sep 4, 2025

Severity

CVSS

(AV:N/AC:L/Au:S/C:N/I:P/A:N)

Published

May 31, 2023

Added

Oct 15, 2024

Modified

Sep 4, 2025

Description

In JetBrains TeamCity before 2023.05 improper permission checks allowed users without appropriate permissions to edit Build Configuration settings via REST API

Solution

jetbrains-teamcity-upgrade-latest

References

CVE-2023-34219
https://attackerkb.com/topics/CVE-2023-34219
CWE-285
CWE-863

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today