CNNVD-202512-2866 Information
Dec 16, 2025
cve
CNNVD ID
CNNVD-202512-2866
Related CVE
- CNNVD Published: 2025-12-16
Description (Chinese)
JetBrains TeamCity是捷克JetBrains公司的一套分布式构建管理和持续集成工具。该工具提供持续单元测试、代码质量分析和构建问题分析报告等功能。 JetBrains TeamCity 2025.11.1之前版本存在安全漏洞,该漏洞源于存储GitHub个人访问令牌而非安装令牌,可能导致权限滥用。
Description (English)
Jetbrains TeamCity is a distributed set of building management and continuous integration tools for Czech Jetbrains. The tool provides continuous modular testing, code quality analysis and construction analysis. There was a security loophole in the pre-Jetbrains TeamCity 2025.11.1, which originated in the storage of GitHub’s personal access token rather than the installation of it, which could lead to abuse of authority.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
JetBrains
Published
2025-12-16
Last Modified
2026-02-24
References
https://www.jetbrains.com/privacy-security/issues-fixed/
Patch
https://www.jetbrains.com/privacy-security/issues-fixed/
Share on: