CVE-2022-46831 - CERT CVE
ID CVE-2022-46831
Sažetak In JetBrains TeamCity between 2022.10 and 2022.10.1 connecting to AWS using the "Default Credential Provider Chain" allowed TeamCity project administrators to access AWS resources normally limited to TeamCity system administrators.
Reference
CVSS
Base: 4.9
Impact: 3.6
Exploitability:1.2
Pristup
VektorSloženostAutentikacija
NETWORK LOW -
Impact
PovjerljivostCjelovitostDostupnost
HIGH NONE NONE
CVSS vektor CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
Zadnje važnije ažuriranje 12-12-2022 - 16:33
Objavljeno 08-12-2022 - 18:15