Improper Permission Checks in JetBrains TeamCity Allow Unauthorized Editing of Build Configuration Settings via REST API

Improper Permission Checks in JetBrains TeamCity Allow Unauthorized Editing of Build Configuration Settings via REST API

CVE-2023-34219 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

In JetBrains TeamCity before 2023.05 improper permission checks allowed users without appropriate permissions to edit Build Configuration settings via REST API

Learn more about our Api Penetration Testing.