Note: This Emerging Threat is also published in the new Fortra Security & Trust Center - the new location for all Emerging Threats beginning in January 2025. Refer to Emerging Threats Moving to Fortra.com for more information on following Emerging Threats in their new location.
Fortra’s Alert Logic is investigating an authentication bypass vulnerability in JetBrains TeamCity – CVE-2024-27198. The authentication bypass allows an attacker to create an authentication token, which can then be used to perform remote code execution. The vendor has released an update to mitigate this vulnerability.
Who is affected?
All versions prior to JetBrains TeamCity 2023.11.4 are vulnerable to CVE-2024-27198.
What can I do?
JetBrains has released an update with version 2023.11.4 to mitigate this vulnerability, as well as another vulnerability (CVE-2024-27199). Customers are recommended to update to this new version as soon as possible.
For more information about the update, refer to JetBrains’ release blog.
How is Alert Logic helping me?
Alert Logic is actively researching this threat to build detection capabilities.
Vulnerability Scanning: Alert Logic released unauthenticated scan coverage to identify vulnerable instances. If the vulnerability is found, an exposure will be raised for CVE-2024-27198.
Updates
Alert Logic has kicked off the Emerging Threat process for this vulnerability. This article will be updated with new information about this vulnerability and related Alert Logic coverage as it becomes available. To follow updates for this vulnerability, click FOLLOW at the top of this article. You must be signed into the Support Center using your Alert Logic product credentials to follow this article.
03/08/2024: Alert Logic released unauthenticated scan coverage to identify vulnerable instances.
Comments
0 comments
Please sign in to leave a comment.