CVE detail
CVE-2024-27198: JetBrains TeamCity Authentication Bypass Vulnerability
Source: CISA Known Exploited Vulnerabilities catalog · back to feed
Vendor / product
JetBrains · TeamCity
- Date added (KEV)
- Mar 07, 2024
- CISA due date
- Mar 28, 2024
- Ransomware campaign use
- Known
Required action
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Vendor fix: Vendor advisory
Scorifya interpretation
AI-generatedA short, structured read of the record above — generated when this page first loads, then cached for a week.
Plain English
Technical detail
From CISA
JetBrains TeamCity contains an authentication bypass vulnerability that allows an attacker to perform admin actions.
https://www.jetbrains.com/help/teamcity/teamcity-2023-11-4-release-notes.html; https://blog.jetbrains.com/teamcity/2024/03/additional-critical-security-issues-affecting-teamcity-on-premises-cve-2024-27198-and-cve-2024-27199-update-to-2023-11-4-now/ ; https://nvd.nist.gov/vuln/detail/CVE-2024-27198
References
- https://www.jetbrains.com/privacy-security/issues-fixed/Vendor Advisory
- https://www.jetbrains.com/privacy-security/issues-fixed/Vendor Advisory
- https://www.darkreading.com/cyberattacks-data-breaches/jetbrains-teamcity-mass-exploitation-underway-rogue-accounts-thrivePress/Media CoverageThird Party Advisory
- https://www.darkreading.com/cyberattacks-data-breaches/jetbrains-teamcity-mass-exploitation-underway-rogue-accounts-thrivePress/Media CoverageThird Party Advisory
Other recent CVEs from JetBrains
- CVE-2024-27199TeamCity — JetBrains TeamCity Relative Path Traversal Vulnerability
- CVE-2023-42793TeamCity — JetBrains TeamCity Authentication Bypass Vulnerability
Check your domain's public posture
Scorifya doesn't test for specific CVEs, but if patching JetBrains changed your headers or TLS, a fresh hardening scan helps confirm nothing regressed externally.