Описание
In JetBrains TeamCity versions before 2018.2.5 and UpSource versions before 2018.2 build 1293, improper validation of user input for one of the fields could lead to Command Injection.
In JetBrains TeamCity versions before 2018.2.5 and UpSource versions before 2018.2 build 1293, improper validation of user input for one of the fields could lead to Command Injection.
Связанные уязвимости
CVSS3: 9.8
nvd
больше 6 лет назад
In JetBrains UpSource versions before 2018.2 build 1293, there is credential disclosure via RPC commands.