Primary

Context

JetBrains TeamCity Credentials Configuration Residual After Disabling Versioned Settings Vulnerability

Vulnerability

Patched

A vulnerability exists in JetBrains TeamCity versions prior to 2025.11.3, where disabling versioned settings did not remove associated credentials configurations from the disk. This oversight could lead to unintended exposure or misuse of sensitive information.

Impact

The vulnerability could result in unauthorized access to stored credentials, potentially allowing for privilege escalation or unauthorized actions within TeamCity.

Remediation

Users can update to JetBrains TeamCity version 2025.11.3 or later to address this vulnerability.

Added: Feb 25, 2026, 2:54 PM

Updated: Feb 25, 2026, 2:54 PM

Vulnerability Rating

Custom Algorithm

spread

5.0

impact

2.5

exploitability

3.0

remediation

7.7

relevance

3.2

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.0

impact

2.5

exploitability

3.0

remediation

7.7

relevance

3.2

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

JetBrains TeamCity Credentials Configuration Residual After Disabling Versioned Settings Vulnerability

Vulnerability

Impact

Remediation

Affected Products

JetBrains TeamCity

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating