VYPR
High severity7.5NVD Advisory· Published May 29, 2026· Updated Jun 2, 2026

CVE-2026-49372

CVE-2026-49372

Description

In JetBrains TeamCity before 2026.1, 2025.11.5 unauthenticated SSRF via build status was possible

Affected products

2
  • cpe:2.3:a:jetbrains:teamcity:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:jetbrains:teamcity:*:*:*:*:*:*:*:*range: <2025.11.5
    • (no CPE)range: <2026.1, <=2025.11.5

Patches

Vulnerability mechanics

References

1

News mentions

1