CVE-2023-41250

Summary

CVE-2023-41250 is a newly disclosed vulnerability affecting JetBrains TeamCity versions prior to 2023.05.3. This issue permits Cross-Site Scripting (XSS) attacks during the user registration process, allowing malicious actors to inject malicious scripts into unsuspecting users' browsers. Successful exploitation could lead to data theft, account takeover, and other forms of unauthorized access. Users are strongly advised to upgrade to the latest TeamCity version as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.