PatchSiren

PatchSiren cyber security CVE debrief

CVE-2026-59793 JetBrains CVE debrief

CVE-2026-59793 is a high-severity vulnerability in JetBrains TeamCity before version 2026.1.2. The issue allows for arbitrary file access due to a flaw in the Perforce VCS integration. This vulnerability has a CVSS score of 8.8 and is considered HIGH severity. Affected users of JetBrains TeamCity, especially those using Perforce VCS integration, should be aware of this vulnerability and take necessary actions to secure their installations. The vulnerability has a high impact on confidentiality, integrity, and availability.

Vendor
JetBrains
Product
TeamCity
CVSS
HIGH 8.8
CISA KEV
Not listed in stored evidence
Original CVE published
2026-07-10
Original CVE updated
2026-07-10
Advisory published
2026-07-10
Advisory updated
2026-07-10

Who should care

Users of JetBrains TeamCity, especially those using Perforce VCS integration, should be aware of this vulnerability and take necessary actions to secure their installations. This includes updating to version 2026.1.2 or later, reviewing and restricting access to Perforce VCS integration, and monitoring for suspicious activity related to file access.

Technical summary

The vulnerability exists in the Perforce VCS integration of JetBrains TeamCity. Successful exploitation could allow an attacker to access arbitrary files. The CVSS vector for this vulnerability is CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H, indicating a high impact on confidentiality, integrity, and availability. The vulnerability has been assigned a high severity score of 8.8.

Defensive priority

High priority should be given to updating TeamCity to version 2026.1.2 or later, as this patch addresses the vulnerability.

Recommended defensive actions

  • Update TeamCity to version 2026.1.2 or later
  • Review and restrict access to Perforce VCS integration
  • Monitor for suspicious activity related to file access
  • Review compensating controls for exposed systems while remediation is scheduled and verified
  • Check relevant monitoring, detection, and logs for exposed assets that need extra review

Evidence notes

The CVE record for CVE-2026-59793 was published on 2026-07-10T15:16:48.350Z and was last modified on 2026-07-10T18:49:40.900Z. The NVD entry is currently Analyzed. The vulnerability exists in the Perforce VCS integration of JetBrains TeamCity. Evidence of exploitation is not currently available. Defenders should verify the official CVE record and NVD entry for further details.

Official resources

AI-assisted PatchSiren debrief based on the supplied source corpus. The CVE record was published on 2026-07-10T15:16:48.350Z and has not been modified since then. The NVD entry is currently Analyzed.