Stored XSS vulnerability in TeamCity Clouds page
CVE-2024-43807
5.4MEDIUM
What is CVE-2024-43807?
A vulnerability exists in JetBrains TeamCity, specifically affecting versions released prior to 2024.07.1. This issue involves multiple stored cross-site scripting (XSS) vulnerabilities present on the Clouds page. Attackers can exploit these vulnerabilities to inject malicious scripts, potentially compromising user data and session integrity. Effective mitigation strategies and updates are essential for maintaining the security of user interactions within the JetBrains TeamCity environment.