CVE-2025-31139 – JetBrains TeamCity Base64 Password Exposure Vulnerability

Vulnerability

Patched

A vulnerability exists in JetBrains TeamCity versions prior to 2025.03, where base64 encoded passwords could be inadvertently revealed in the build log. This issue could lead to the exposure of sensitive credentials, potentially allowing unauthorized access or actions within the TeamCity environment.

Impact

Exposing base64 encoded passwords in build logs could lead to unauthorized access or actions, depending on the context in which the credentials are used.

Remediation

Users can update to TeamCity version 2025.03.1 or later, where this vulnerability has been fixed.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Affected Products

JetBrains TeamCity

Moderate fix1 remedy

cpe:2.3:a:jetbrains:teamcity:*:*:*:*:*:*:*

Moderate fix1 remedy

< 2025.03

JetBrains YouTrack

0 remedies

cpe:2.3:a:jetbrains:youtrack:*:*:*:*:*:*:*, +1 more

0 remedies

JetBrains Rider

0 remedies

cpe:2.3:a:jetbrains:rider:*:*:*:*:*:*:*

0 remedies

JetBrains Toolbox App

0 remedies

cpe:2.3:a:jetbrains:toolbox:*:*:*:*:*:*:*, +1 more

0 remedies

JetBrains IntelliJ IDEA

0 remedies

cpe:2.3:a:jetbrains:intellij_idea:*:*:*:*:*:*:*

0 remedies

JetBrains RubyMine

0 remedies

cpe:2.3:a:jetbrains:rubymine:*:*:*:*:*:*:*

0 remedies

JetBrains dotTrace

0 remedies

cpe:2.3:a:jetbrains:dottrace:*:*:*:*:*:*:*

0 remedies

JetBrains ReSharper

0 remedies

cpe:2.3:a:jetbrains:resharper:*:*:*:*:*:*:*

0 remedies

JetBrains Hub

0 remedies

cpe:2.3:a:jetbrains:hub:*:*:*:*:*:*:*

0 remedies

JetBrains Ktor

0 remedies

cpe:2.3:a:jetbrains:ktor:*:*:*:*:*:*:*

0 remedies

JetBrains GoLand

0 remedies

cpe:2.3:a:jetbrains:goland:*:*:*:*:*:*:*

0 remedies

JetBrains WebStorm

0 remedies

cpe:2.3:a:jetbrains:webstorm:*:*:*:*:*:*:*

0 remedies

JetBrains DataGrip

0 remedies

cpe:2.3:a:jetbrains:datagrip:*:*:*:*:*:*:*

0 remedies

JetBrains DataSpell

0 remedies

cpe:2.3:a:jetbrains:dataspell:*:*:*:*:*:*:*

0 remedies

JetBrains PhpStorm

0 remedies

cpe:2.3:a:jetbrains:phpstorm:*:*:*:*:*:*:*

0 remedies

JetBrains PyCharm

0 remedies

cpe:2.3:a:jetbrains:pycharm:*:*:*:*:*:*:*

0 remedies

JetBrains RustRover

0 remedies

cpe:2.3:a:jetbrains:rustrover:*:*:*:*:*:*:*

0 remedies

JetBrains MPS

0 remedies

cpe:2.3:a:jetbrains:mps:*:*:*:*:*:*:*

0 remedies

CVSS Scores

volerion

6.9

CVSS 4.0

6.9

Medium

volerion

5.7

CVSS 3.1

5.7

Medium

nvd@nist.gov

6.5

CVSS 3.1

6.5

Medium

Vendor

4.3

CVSS 3.1

4.3

Medium

Click a row to open the calculator.

References

https://www.jetbrains.com/privacy-security/issues-fixed/

AdvisoryBundleVendor

Showing 1-1 of 1 references

JetBrains TeamCity Base64 Password Exposure Vulnerability

Vulnerability

Impact

Remediation

Affected Products

JetBrains TeamCity

JetBrains YouTrack

JetBrains Rider

JetBrains Toolbox App

JetBrains IntelliJ IDEA

JetBrains RubyMine

JetBrains dotTrace

JetBrains ReSharper

JetBrains Hub

JetBrains Ktor

JetBrains GoLand

JetBrains WebStorm

JetBrains DataGrip

JetBrains DataSpell

JetBrains PhpStorm

JetBrains PyCharm

JetBrains RustRover

JetBrains MPS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating