CVE-2020-27629

EUVD-2020-20136
In JetBrains TeamCity before 2020.1.5, secure dependency parameters could be not masked in depending builds when there are no internal artifacts.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.3 MEDIUM
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Affected Products (NVD)
VendorProductVersion
jetbrainsteamcity
𝑥
< 2020.1.5
𝑥
= Vulnerable software versions
References
https://blog.jetbrains.com
https://blog.jetbrains.com/2020/11/16/jetbrains-security-bulletin-q3-2020/
https://blog.jetbrains.com
https://blog.jetbrains.com/2020/11/16/jetbrains-security-bulletin-q3-2020/