CVE-2024-41829
22.07.2024, 15:15
In JetBrains TeamCity before 2024.07 an OAuth code for JetBrains Space could be stolen via Space Application connectionEnginsight
| Vendor | Product | Version |
|---|---|---|
| jetbrains | teamcity | 𝑥 < 2024.07 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
- CWE-303 - Incorrect Implementation of Authentication AlgorithmThe requirements for the software dictate the use of an established authentication algorithm, but the implementation of the algorithm is incorrect.
- CWE-287 - Improper AuthenticationWhen an actor claims to have a given identity, the software does not prove or insufficiently proves that the claim is correct.