CVE-2025-46432 – JetBrains TeamCity Base64-Credential Exposure Vulnerability

Vulnerability

Patched

A vulnerability exists in JetBrains TeamCity versions prior to 2025.03.1, where base64-encoded credentials could be inadvertently revealed in build logs. This issue could lead to unauthorized access or manipulation of sensitive information, depending on the context of the exposed credentials.

Impact

Exposed credentials could be misused to gain unauthorized access or privileges, potentially leading to further exploitation within the application or associated systems.

Remediation

Users can update to JetBrains TeamCity version 2025.03.1 or later to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Affected Products

JetBrains TeamCity

Moderate fix1 remedy

cpe:2.3:a:jetbrains:teamcity:*:*:*:*:*:*:*

Moderate fix1 remedy

< 2025.03.1

JetBrains YouTrack

0 remedies

cpe:2.3:a:jetbrains:youtrack:*:*:*:*:*:*:*, +1 more

0 remedies

JetBrains Rider

0 remedies

cpe:2.3:a:jetbrains:rider:*:*:*:*:*:*:*

0 remedies

JetBrains Toolbox App

0 remedies

cpe:2.3:a:jetbrains:toolbox:*:*:*:*:*:*:*, +1 more

0 remedies

JetBrains IntelliJ IDEA

0 remedies

cpe:2.3:a:jetbrains:intellij_idea:*:*:*:*:*:*:*

0 remedies

JetBrains GoLand

0 remedies

cpe:2.3:a:jetbrains:goland:*:*:*:*:*:*:*

0 remedies

JetBrains Ktor

0 remedies

cpe:2.3:a:jetbrains:ktor:*:*:*:*:*:*:*

0 remedies

JetBrains dotTrace

0 remedies

cpe:2.3:a:jetbrains:dottrace:*:*:*:*:*:*:*

0 remedies

JetBrains Hub

0 remedies

cpe:2.3:a:jetbrains:hub:*:*:*:*:*:*:*

0 remedies

JetBrains WebStorm

0 remedies

cpe:2.3:a:jetbrains:webstorm:*:*:*:*:*:*:*

0 remedies

JetBrains RubyMine

0 remedies

cpe:2.3:a:jetbrains:rubymine:*:*:*:*:*:*:*

0 remedies

JetBrains DataGrip

0 remedies

cpe:2.3:a:jetbrains:datagrip:*:*:*:*:*:*:*

0 remedies

JetBrains DataSpell

0 remedies

cpe:2.3:a:jetbrains:dataspell:*:*:*:*:*:*:*

0 remedies

JetBrains MPS

0 remedies

cpe:2.3:a:jetbrains:mps:*:*:*:*:*:*:*

0 remedies

JetBrains PhpStorm

0 remedies

cpe:2.3:a:jetbrains:phpstorm:*:*:*:*:*:*:*

0 remedies

JetBrains PyCharm

0 remedies

cpe:2.3:a:jetbrains:pycharm:*:*:*:*:*:*:*

0 remedies

JetBrains RustRover

0 remedies

cpe:2.3:a:jetbrains:rustrover:*:*:*:*:*:*:*

0 remedies

CVSS Scores

volerion

7.1

CVSS 4.0

7.1

High

volerion

6.5

CVSS 3.1

6.5

Medium

nvd@nist.gov

6.5

CVSS 3.1

6.5

Medium

Vendor

4.3

CVSS 3.1

4.3

Medium

Click a row to open the calculator.

References

https://www.jetbrains.com/privacy-security/issues-fixed/

AdvisoryBundleVendor

Showing 1-1 of 1 references

JetBrains TeamCity Base64-Credential Exposure Vulnerability

Vulnerability

Impact

Remediation

Affected Products

JetBrains TeamCity

JetBrains YouTrack

JetBrains Rider

JetBrains Toolbox App

JetBrains IntelliJ IDEA

JetBrains GoLand

JetBrains Ktor

JetBrains dotTrace

JetBrains Hub

JetBrains WebStorm

JetBrains RubyMine

JetBrains DataGrip

JetBrains DataSpell

JetBrains MPS

JetBrains PhpStorm

JetBrains PyCharm

JetBrains RustRover

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating