GeneralInformation

Hostnames	ec2-52-89-112-128.us-west-2.compute.amazonaws.com
Domains	amazonaws.com
Cloud Provider	Amazon
Cloud Region	us-west-2
Cloud Service	EC2
Country	United States
City	Boardman
Organization	Amazon Technologies Inc.
ISP	Amazon.com, Inc.
ASN	AS16509

WebTechnologies

TeamCity

JavaScript frameworks

React

Prototype

JavaScript libraries

jQuery

Underscore.js

Moment.js

Programming languages

Java

Web servers

Apache Tomcat

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2025(2)

CVE-2025-24460

4.3In JetBrains TeamCity before 2024.12.1 improper access control allowed to see Projects’ names in the agent pool

CVE-2025-24459

4.6In JetBrains TeamCity before 2024.12.1 reflected XSS was possible on the Vault Connection page

2024(14)

CVE-2024-56356

5.9In JetBrains TeamCity before 2024.12 insecure XMLParser configuration could lead to potential XXE attack

CVE-2024-56355

4.6In JetBrains TeamCity before 2024.12 missing Content-Type header in RemoteBuildLogController response could lead to XSS

CVE-2024-56354

5.5In JetBrains TeamCity before 2024.12 password field value were accessible to users with view settings permission

CVE-2024-56353

5.5In JetBrains TeamCity before 2024.12 backup file exposed user credentials and session cookies

CVE-2024-56352

4.6In JetBrains TeamCity before 2024.12 stored XSS was possible via image name on the agent details page

CVE-2024-56351

6.3In JetBrains TeamCity before 2024.12 access tokens were not revoked after removing user roles

CVE-2024-56350

4.3In JetBrains TeamCity before 2024.12 build credentials allowed unauthorized viewing of projects

CVE-2024-56349

5.3In JetBrains TeamCity before 2024.12 improper access control allowed unauthorized users to modify build logs

CVE-2024-56348

4.3In JetBrains TeamCity before 2024.12 improper access control allowed viewing details of unauthorized agents

CVE-2024-47951

3.5In JetBrains TeamCity before 2024.07.3 stored XSS was possible via server global settings

CVE-2024-47950

3.5In JetBrains TeamCity before 2024.07.3 stored XSS was possible in Backup configuration settings

CVE-2024-47949

4.9In JetBrains TeamCity before 2024.07.3 path traversal allowed backup file write to arbitrary location

CVE-2024-47948

4.9In JetBrains TeamCity before 2024.07.3 path traversal leading to information disclosure was possible via server backups

CVE-2024-47161

4.3In JetBrains TeamCity before 2024.07.3 password could be exposed via Sonar runner REST API

OpenPorts

80 443

80 / tcp

-1853460235 | 2025-03-21T21:45:55.959223

Hashes

hash

-311118177

http.dom_hash

-1232434961

http.favicon.hash

-214407152

http.html_hash

-1853460235

http.title_hash

-2050518018

HTTP/1.1 200 
Date: Fri, 21 Mar 2025 21:45:55 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
TeamCity-Node-Id: MAIN_SERVER
Cache-Control: no-store
Set-Cookie: TCSESSIONID=03AE961787285F053418C1222CC98766; Path=/; HttpOnly
Set-Cookie: __test=1; Max-Age=31536000; Expires=Sat, 21 Mar 2026 21:45:55 GMT; Path=/
Content-Security-Policy: frame-ancestors 'self';default-src 'self' 'unsafe-inline';script-src 'self' 'unsafe-inline' 'unsafe-eval' https://resources.jetbrains.com https://www.google-analytics.com https://ajax.googleapis.com http://localhost:8111;style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://rsms.me;connect-src 'self' ws: wss: https://www.google-analytics.com https://stgn.fus-stgn.aws.intellij.net https://prod.fus.aws.intellij.net https://resources.jetbrains.com ws:* http://localhost:8111;img-src 'self' data: blob: http://127.0.0.1:63330 http://127.0.0.1:63331 http://127.0.0.1:63332 http://127.0.0.1:63333 http://127.0.0.1:63334 http://127.0.0.1:63335 http://127.0.0.1:63336 http://127.0.0.1:63337 http://127.0.0.1:63338 http://127.0.0.1:63339 https://avatars.githubusercontent.com;font-src 'self' data: https://fonts.gstatic.com https://raw.githubusercontent.com https://rsms.me;frame-src 'self' data:
X-Frame-Options: sameorigin
Strict-Transport-Security: max-age=31536000;
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Referrer-Policy: origin-when-cross-origin
mixed-content: noupgrade
Content-Language: en

Vulnerabilities

14 2

443 / tcp

-499545613 | 2025-03-19T06:23:16.044354

HTTP/1.1 401 
Date: Wed, 19 Mar 2025 06:23:16 GMT
Content-Type: text/plain;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
TeamCity-Node-Id: MAIN_SERVER
WWW-Authenticate: Basic realm="TeamCity"
WWW-Authenticate: Bearer realm="TeamCity"
X-Content-Type-Options: nosniff

42
Authentication required
To login manually go to "/login.html" page
0

52.89.112.128

Last Seen: 2025-03-21

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

80 / tcp

-1853460235 | 2025-03-21T21:45:55.959223

Hashes

443 / tcp

-499545613 | 2025-03-19T06:23:16.044354

Products

Pricing

Contact Us

52.89.112.128

Last Seen: 2025-03-21

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 80 Latest CVSS

OpenPorts

80 / tcp -1853460235 | 2025-03-21T21:45:55.959223

Hashes

443 / tcp -499545613 | 2025-03-19T06:23:16.044354

Products

Pricing

Contact Us

Vulnerabilities

80 / tcp

-1853460235 | 2025-03-21T21:45:55.959223

443 / tcp

-499545613 | 2025-03-19T06:23:16.044354