CVE Daily

CVE-2025-54531

In JetBrains TeamCity before 2025.07 path traversal was possible via plugin unpa...

High CVSS 7.7

Overview

In JetBrains TeamCity before 2025.07 path traversal was possible via plugin unpacking on Windows

CWE: CWE-23 Published: 2025-07-28T17:15:32.590
Risk analysis

This vulnerability is rated 🟠 HIGH.

  • CVSS: 7.7 (HIGH)
  • Detected tags: path (tag impact: MODERATE)

Recommended actions:

  • Canonicalize path; block `..` traversal; use allowlists.

Recommended tools

Tags