{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-28196", "assignerOrgId": "547ada31-17d8-4964-bc5f-1b8238ba8014", "state": "PUBLISHED", "assignerShortName": "JetBrains", "dateReserved": "2026-02-25T12:35:13.328Z", "datePublished": "2026-02-25T12:57:29.497Z", "dateUpdated": "2026-02-25T14:40:40.502Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "547ada31-17d8-4964-bc5f-1b8238ba8014", "shortName": "JetBrains", "dateUpdated": "2026-02-25T12:57:29.497Z"}, "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-459", "cweId": "CWE-459"}]}], "affected": [{"vendor": "JetBrains", "product": "TeamCity", "versions": [{"version": "0", "status": "affected", "lessThan": "2025.11.3", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "In JetBrains TeamCity before 2025.11.3 disabling versioned settings left a credentials config on disk"}], "references": [{"url": "https://www.jetbrains.com/privacy-security/issues-fixed/"}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "HIGH", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "availabilityImpact": "NONE", "baseScore": 2.3, "baseSeverity": "LOW", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N"}}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-02-25T14:40:00.868391Z", "id": "CVE-2026-28196", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-25T14:40:40.502Z"}}]}}

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-28196", "assignerOrgId": "547ada31-17d8-4964-bc5f-1b8238ba8014", "state": "PUBLISHED", "assignerShortName": "JetBrains", "dateReserved": "2026-02-25T12:35:13.328Z", "datePublished": "2026-02-25T12:57:29.497Z", "dateUpdated": "2026-02-25T14:40:40.502Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "547ada31-17d8-4964-bc5f-1b8238ba8014", "shortName": "JetBrains", "dateUpdated": "2026-02-25T12:57:29.497Z"}, "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-459", "cweId": "CWE-459"}]}], "affected": [{"vendor": "JetBrains", "product": "TeamCity", "versions": [{"version": "0", "status": "affected", "lessThan": "2025.11.3", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "In JetBrains TeamCity before 2025.11.3 disabling versioned settings left a credentials config on disk"}], "references": [{"url": "https://www.jetbrains.com/privacy-security/issues-fixed/"}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "HIGH", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "availabilityImpact": "NONE", "baseScore": 2.3, "baseSeverity": "LOW", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N"}}]}, "adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-28196", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-02-25T14:40:00.868391Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-25T14:40:07.524Z"}}]}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:jetbrains:teamcity:*:*:*:*:*:*:*:*", "matchCriteriaId": "070CF2C4-0F0B-4ED4-B95A-46A9B9D78377", "versionEndExcluding": "2025.11.3", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "In JetBrains TeamCity before 2025.11.3 disabling versioned settings left a credentials config on disk"}], "id": "CVE-2026-28196", "lastModified": "2026-02-25T17:17:14.643", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 2.3, "baseSeverity": "LOW", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 0.8, "impactScore": 1.4, "source": "cve@jetbrains.com", "type": "Secondary"}]}, "published": "2026-02-25T14:16:21.200", "references": [{"source": "cve@jetbrains.com", "tags": ["Vendor Advisory"], "url": "https://www.jetbrains.com/privacy-security/issues-fixed/"}], "sourceIdentifier": "cve@jetbrains.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-459"}], "source": "cve@jetbrains.com", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,2025.11.3)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "matching", "scores": [{"score": 100.0, "source": "matching"}]}, "original": {"product": "TeamCity", "source": "cna", "vendor": "JetBrains"}, "product": "teamcity", "vendor": "jetbrains"}], "analysis": {"en": {"generated_at": "2026-04-18T10:44:49.010232+00:00", "value": {"mitigation_remediation": ["Update TeamCity to version 2025.11.3 or later to remove the flaw", "After upgrading, verify that no legacy credentials files remain in the configuration directory", "Apply appropriate file system permissions to restrict read access to credential files to only the TeamCity service account"], "summary": {"action": "Patch Promptly", "impact": "Credential Leakage"}, "threat_synthesis": {"affected_systems": "All installations of JetBrains TeamCity running a version earlier than 2025.11.3 are affected, regardless of edition.", "description_and_impact": "A flaw in JetBrains TeamCity versions before 2025.11.3 allows a disabling of versioned settings to leave a credentials configuration file permanently on disk, exposing authentication data. This is classified as an improper handling of security data weakness.", "risk_and_exploitability": "The CVSS score is 2.3, indicating low severity. The EPSS score of less than 1% suggests a very small chance of exploitation. The vulnerability is not listed in the CISA KEV catalog. Based on the description, it is inferred that an attacker would need local file system access to read the residual credentials file, or a prior compromise that allows read of the configuration directory. Because the credentials are stored on disk, compromise of the file can lead to unauthorized access to TeamCity services and potentially other systems where those credentials are reused."}}}}, "created": "2026-02-26T13:18:03.090588+00:00", "title": "Credentials Configuration Left on Disk After Disabling Versioned Settings", "updated": "2026-04-18T10:45:43.672092+00:00", "vendors": ["jetbrains", "jetbrains$PRODUCT$teamcity"]}