JetBrains Security Bulletin only shows 7 vulnerabilities out of "26 security problems fixed": https://www.jetbrains.com/privacy-security/issues-fixed/?product=TeamCity&version=2024.03
- CVE-2024-31134 (vendor 6.5 medium) In JetBrains TeamCity before 2024.03 authenticated users without administrative permissions could register other users when self-registration was disabled
- CVE-2024-31135 (vendor 6.1 medium) In JetBrains TeamCity before 2024.03 open redirect was possible on the login page
- CVE-2024-31136 (vendor 7.4 high) In JetBrains TeamCity before 2024.03 2FA could be bypassed by providing a special URL parameter
- CVE-2024-31137 (vendor 6.8 medium) In JetBrains TeamCity before 2024.03 reflected XSS was possible via Space connection configuration
- CVE-2024-31138 (vendor 4.6 medium) In JetBrains TeamCity before 2024.03 xSS was possible via Agent Distribution settings
- CVE-2024-31139 (vendor 5.9 medium) In JetBrains TeamCity before 2024.03 xXE was possible in the Maven build steps detector
- CVE-2024-31140 (vendor 4.1 medium) In JetBrains TeamCity before 2024.03 server administrators could remove arbitrary files from the server by installing tools
cc: @campuscodi