CVE-2024-29880

EUVD-2024-26869
In JetBrains TeamCity before 2023.11 users with access to the agent machine might obtain permissions of the user running the agent process
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.2 MEDIUM
LOCAL
LOW
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
JetBrainsCNA
4.2 MEDIUM
LOCAL
LOW
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Affected Products (NVD)
VendorProductVersion
jetbrainsteamcity
𝑥
< 2023.11
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://www.jetbrains.com/privacy-security/issues-fixed/
https://www.jetbrains.com/privacy-security/issues-fixed/