CNNVD-202506-2960 Information
CNNVD ID
CNNVD-202506-2960
Related CVE
- CNNVD Published: 2025-06-23
Description (Chinese)
JetBrains TeamCity是捷克JetBrains公司的一套分布式构建管理和持续集成工具。该工具提供持续单元测试、代码质量分析和构建问题分析报告等功能。 JetBrains TeamCity 2025.03.3之前版本存在跨站脚本漏洞,该漏洞源于NPM Registry集成容易受到反射型跨站脚本攻击。
Description (English)
Jetbrains TeamCity is a distributed set of building management and continuous integration tools for Czech Jetbrains. The tool provides continuous modular testing, code quality analysis and construction analysis. The pre-Jetbrain TeamCity 2025.03.3 version has a cross-site script loophole, which stems from the vulnerability of NPM Registry to reflect-type cross-station scripts.
Hazard Level
High
Vulnerability Type
跨站脚本
Affected Vendor
JetBrains
Published
2025-06-23
Last Modified
2026-02-24
References
https://www.jetbrains.com/privacy-security/issues-fixed/ https://access.redhat.com/security/cve/cve-2025-52879
Patch
https://www.jetbrains.com/privacy-security/issues-fixed/
Share on: