Improper Repository URL Validation in JetBrains TeamCity
CVE-2025-67739

3.1LOW

Key Information:

Vendor: Jetbrains
Status: Teamcity
Vendor: CVE Published:; 11 December 2025

What is CVE-2025-67739?

JetBrains TeamCity versions prior to 2025.11.2 are affected by a vulnerability stemming from improper validation of repository URLs. This flaw can potentially allow unauthorized disclosure of local paths, which may lead to exposure of sensitive information within the affected systems. Users are advised to upgrade to the patched versions to mitigate this risk.

Affected Version(s)

TeamCity 0 < 2025.11.2

References

https://www.jetbrains.com/privacy-security/issues-fixed/

CVSS V3.1

Score:

3.1

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 11, 2025
Vulnerability Reserved
Dec 11, 2025

JSON

Jetbrains

What is CVE-2025-67739?

Affected Version(s)

References

CVSS V3.1

Timeline