CVE-2026-49372

In JetBrains TeamCity before 2026.1, 2025.11.5 unauthenticated SSRF via build status was possible

high 7.5 CVSS 3.1

Published: May 29, 2026

Modified: Jun 2, 2026

Vendor: Jetbrains

Product: Teamcity

Description

In JetBrains TeamCity before 2026.1,
2025.11.5 unauthenticated SSRF via build status was possible

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Vendor	Jetbrains
Product	Teamcity