High severity8.2NVD Advisory· Published May 11, 2026· Updated May 12, 2026
CVE-2026-44413
CVE-2026-44413
Description
In JetBrains TeamCity before 2026.1 2025.11.5 authenticated users could expose server API to unauthorised access
Affected products
1Patches
Vulnerability mechanics
References
1- www.jetbrains.com/privacy-security/issues-fixed/nvdVendor Advisory
News mentions
3- ⚡ Weekly Recap: Exchange 0-Day, npm Worm, Fake AI Repo, Cisco Exploit and MoreThe Hacker News · May 18, 2026
- Week in review: Cisco patches SD-WAN 0-day, unpatched Microsoft Exchange Server flaw exploitedHelp Net Security · May 17, 2026
- JetBrains TeamCity vulnerability allows privilege escalation, API exposure (CVE-2026-44413)Help Net Security · May 12, 2026