Ce mail provient de l'extérieur, restons vigilants

=====================================================================

                            CERT-Renater

                Note d'Information No. 2025/VULN179

_____________________________________________________________________

DATE                : 27/03/2025

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S): Systems running TeamCity versions prior to
                                     2025.03.

=====================================================================
https://www.jetbrains.com/privacy-security/issues-fixed/
_____________________________________________________________________

Product	Description    Severity    Resolved In    CWE    CVE

TeamCity   Base64 encoded password could be exposed in build log
(TW-91934)    Medium    2025.03    CWE-532    CVE-2025-31139

TeamCity    Stored XSS was possible on Cloud Profiles page (TW-92117)
Medium    2025.03    CWE-79    CVE-2025-31140

TeamCity    Exception could lead to credential leakage on Cloud
Profiles page (TW-89110)   Low	  2025.03    CWE-209    CVE-2025-31141


=========================================================
+ CERT-RENATER        |    tel : 01-53-94-20-44         +
+ 23/25 Rue Daviel    |    fax : 01-53-94-20-41         +
+ 75013 Paris         |   email:cert@support.renater.fr +
=========================================================