Improper Ownership Management

CVE-2025-57732

High

7.5/10

Summary

In JetBrains TeamCity before 2025.07.1 privilege escalation was possible due to incorrect directory ownership

Attack Complexity: HIGH
Attack Vector: LOCAL
Integrity Impact: HIGH
Scope: CHANGED
User Interaction: NONE
Privileges Required: LOW
Confidentiality Impact: HIGH
Availability Impact: NONE

CWE-282 - Improper Ownership Management

The software assigns the wrong ownership, or does not properly verify the ownership, of an object or resource.

References

Advisory Timeline

Published Aug 20, 2025