{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-28195", "assignerOrgId": "547ada31-17d8-4964-bc5f-1b8238ba8014", "state": "PUBLISHED", "assignerShortName": "JetBrains", "dateReserved": "2026-02-25T12:35:12.999Z", "datePublished": "2026-02-25T12:57:28.907Z", "dateUpdated": "2026-02-25T14:42:36.845Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "547ada31-17d8-4964-bc5f-1b8238ba8014", "shortName": "JetBrains", "dateUpdated": "2026-02-25T12:57:28.907Z"}, "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-862", "cweId": "CWE-862"}]}], "affected": [{"vendor": "JetBrains", "product": "TeamCity", "versions": [{"version": "0", "status": "affected", "lessThan": "2025.11.3", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "In JetBrains TeamCity before 2025.11.3 missing authorization allowed project developers to add parameters to build configurations"}], "references": [{"url": "https://www.jetbrains.com/privacy-security/issues-fixed/"}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "availabilityImpact": "NONE", "baseScore": 4.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N"}}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-02-25T14:42:20.947857Z", "id": "CVE-2026-28195", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-25T14:42:36.845Z"}}]}}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:jetbrains:teamcity:*:*:*:*:*:*:*:*", "matchCriteriaId": "070CF2C4-0F0B-4ED4-B95A-46A9B9D78377", "versionEndExcluding": "2025.11.3", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "In JetBrains TeamCity before 2025.11.3 missing authorization allowed project developers to add parameters to build configurations"}], "id": "CVE-2026-28195", "lastModified": "2026-02-25T17:17:05.450", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 1.4, "source": "cve@jetbrains.com", "type": "Secondary"}]}, "published": "2026-02-25T14:16:21.040", "references": [{"source": "cve@jetbrains.com", "tags": ["Vendor Advisory"], "url": "https://www.jetbrains.com/privacy-security/issues-fixed/"}], "sourceIdentifier": "cve@jetbrains.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-862"}], "source": "cve@jetbrains.com", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,2025.11.3)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "matching", "scores": [{"score": 100.0, "source": "matching"}]}, "original": {"product": "TeamCity", "source": "cna", "vendor": "JetBrains"}, "product": "teamcity", "vendor": "jetbrains"}], "analysis": {"en": {"generated_at": "2026-04-17T15:17:21.316742+00:00", "value": {"mitigation_remediation": ["Update TeamCity to 2025.11.3 or later to eliminate the missing authorization check.", "Restrict project developer permissions to only those users who truly require the ability to add or modify build parameters.", "Conduct a security review of build configuration access controls to ensure only authorized accounts can alter sensitive parameters."], "summary": {"action": "Patch", "impact": "Unauthorized configuration changes to TeamCity build parameters"}, "threat_synthesis": {"affected_systems": "JetBrains TeamCity systems running any version earlier than 2025.11.3 are affected. No explicit patch version is listed, but all releases prior to 2025.11.3 are vulnerable.", "description_and_impact": "TeamCity before 2025.11.3 failed to properly enforce authorization checks, enabling anyone with project developer rights to add new parameters to a build configuration. This mis\u2011authorization can let a user modify build behavior, inject undesired variables, or expose confidential data in the CI pipeline, potentially compromising build integrity and confidentiality. The weakness is identified as CWE\u2011862: Authorization Bypass Through User-Controlled Key.", "risk_and_exploitability": "The CVSS score of 4.3 indicates moderate severity. EPSS is less than 1%, showing a very low probability of exploitation at the time of this analysis, and the vulnerability is not listed in the CISA KEV catalog. Attackers would need project developer access; the bug allows elevation of their configuration privileges without additional zero\u2011day exploits. The likely attack vector is internal or compromised developer accounts with existing Access rights, so organizations with broad developer permissions should examine role assignments."}}}}, "created": "2026-02-26T13:18:04.042344+00:00", "title": "Missing Authorization Allows Project Developers to Add Build Parameters", "updated": "2026-04-17T15:30:06.015125+00:00", "vendors": ["jetbrains", "jetbrains$PRODUCT$teamcity"]}