Property Abroad
Blog
Experts have discovered vulnerabilities in JetBrains TeamCity On-Premises software.

Experts have discovered vulnerabilities in JetBrains TeamCity On-Premises software.

Experts have discovered vulnerabilities in JetBrains TeamCity On-Premises software.

Rapid7 researchers have disclosed two new critical vulnerabilities in JetBrains TeamCity On-Premises software that allow attackers to take control of systems. CVE-2024-27198 (CVSS-score: 9.8) and CVE-2024-27199 (CVSS-score: 7.3) identified vulnerabilities in TeamCity On-Premises. An attacker could exploit these vulnerabilities to gain control of affected systems.

Here are descriptions of those vulnerabilities:

  • CVE-2024-27198- is an authentication bypass vulnerability in the TeamCity web component due to an alternate path issue and has a base CVSS-score of 9.8 (Critical).

  • CVE-2024-27199- is an authentication bypass vulnerability in the TeamCity web component resulting from a path traversal issue and has a base CVSS-score of 7.3 (High).

"The vulnerabilities could allow an unauthenticated attacker with HTTP(S) access to a TeamCity server to bypass authentication checks and gain administrative control of that TeamCity server," reads the advisory published by JetBrains. The vulnerabilities affect all versions of TeamCity On-Premises prior to 2023.11.3, the issue was fixed with the release of 2023.11.4.

The company has also released a security plugin for those customers who are unable to patch vulnerable systems.

The two vulnerabilities were discovered by Stephen Fure, Principal Security Researcher at Rapid7, and were disclosed in accordance with Rapid7's vulnerability disclosure policy. Rapid7 has published a detailed analysis of the two vulnerabilities. In describing the CVE-2024-27198 vulnerability, researchers pointed out that an unauthenticated attacker could use a specially crafted URL to bypass all authentication checks. A remote, unauthenticated attacker could use this vulnerability to take full control of a vulnerable TeamCity server.

JetBrains recently resolved another critical vulnerability in TeamCity servers, registered as CVE-2024-23917 (CVSS-score: 9.8), which an unauthenticated attacker could exploit to gain administrative control over the servers.

Tags

Comment

Popular Posts

Subscribe to the newsletter from Hatamatata.com!

I agree to the processing of personal data and confidentiality rules of Hatamatata