Credential Leakage Vulnerability in JetBrains TeamCity
CVE-2025-31141

2.7LOW

Key Information:

Vendor: Jetbrains
Status: Teamcity
Vendor: CVE Published:; 27 March 2025

Summary

A vulnerability in JetBrains TeamCity before version 2025.03 allows unauthorized access that can result in credential leakage on the Cloud Profiles page. This exposure of sensitive information can significantly compromise the security of user accounts, making it crucial for organizations to update their systems to the latest version to mitigate risks.

Affected Version(s)

TeamCity 0 < 2025.03

References

https://www.jetbrains.com/privacy-security/issues-fixed/

CVSS V3.1

Score:

2.7

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 27, 2025
Vulnerability Reserved
Mar 26, 2025