Lucene search
AttackerKBAKB:7F1C8D00-AE08-447B-86B6-756B2E89DA2BHistoryMar 04, 2024 - 12:00 a.m.
CVE-2024-27199
2024-03-0400:00:00
attackerkb.com
12
cve-2024-27199
jetbrains teamcity
path traversal
limited admin actions
information disclosure
system modification
unauthenticated attacker
https certificate
In JetBrains TeamCity before 2023.11.4 path traversal allowing to perform limited admin actions was possible
Recent assessments:
sfewer-r7 at March 04, 2024 8:16pm UTC reported:
CVE-2024-27199, allows for a limited amount of information disclosure and a limited amount of system modification, including the ability for an unauthenticated attacker to replace the HTTPS certificate in a vulnerable TeamCity server with a certificate of the attackerβs choosing.
Assessed Attacker Value: 3
Assessed Attacker Value: 3Assessed Attacker Value: 5
Related
nuclei
nuclei
TeamCity < 2023.11.4 - Authentication Bypass
2024-03-04 20:33:19
TeamCity < 2023.11.4 - Authentication Bypass
2024-03-04 20:18:08
attackerkb
attackerkb
CVE-2024-27198
2024-03-04 00:00:00
hivepro
hivepro
TeamCity Vulnerabilities Unleash Jasmin Ransomware and More
2024-03-23 02:00:31
Critical Vulnerabilities Discovered in TeamCity, Enable Server Takeover
2024-03-06 17:21:03
Attacks, Vulnerabilities and Actors 4 to 10 March 2024
2024-03-13 07:25:00
trendmicroblog
trendmicroblog
metasploit
metasploit
JetBrains TeamCity Unauthenticated Remote Code Execution
2024-03-01 16:42:59
malwarebytes
malwarebytes
Update now! JetBrains TeamCity vulnerability abused at scale
2024-03-08 12:08:35
packetstorm
packetstorm
JetBrains TeamCity Unauthenticated Remote Code Execution
2024-03-14 00:00:00
rapid7blog
rapid7blog
CVE-2024-27198 and CVE-2024-27199: JetBrains TeamCity Multiple Authentication Bypass Vulnerabilities (FIXED)
2024-03-04 19:17:01
Whatβs New in Rapid7 Products & Services: Q1 2024 in Review
2024-04-04 13:00:00
Metasploit Wrap-Up 03/15/2024
2024-03-15 18:20:02
wizblog
wizblog
nessus
nessus
TeamCity Server < 2023.11.4 Multiple Vulnerabilities
2024-03-05 00:00:00
JetBrains TeamCity Authentication Bypass (CVE-2024-27198)
2024-03-05 00:00:00
JetBrains TeamCity Path Traversal (CVE-2024-27199)
2024-03-08 00:00:00
thn
thn
CISA Warns of Actively Exploited JetBrains TeamCity Vulnerability
2024-03-08 06:13:00
Critical JetBrains TeamCity On-Premises Flaws Could Lead to Server Takeovers
2024-03-05 03:34:00
TeamCity Flaw Leads to Surge in Ransomware, Cryptomining, and RAT Attacks
2024-03-20 11:26:00
nvd
nvd
CVE-2024-27199
2024-03-04 18:15:09
CVE-2024-27198
2024-03-04 18:15:09
githubexploit
githubexploit
prion
prion
Path traversal
2024-03-04 18:15:00
Authentication flaw
2024-03-04 18:15:00
cvelist
cvelist
CVE-2024-27199
2024-03-04 17:21:40
CVE-2024-27198
2024-03-04 17:21:39
cve
cve
CVE-2024-27199
2024-03-04 18:15:09
CVE-2024-27198
2024-03-04 18:15:09
cisa_kev
cisa_kev
JetBrains TeamCity Authentication Bypass Vulnerability
2024-03-07 00:00:00
securelist
securelist
Exploits and vulnerabilities in Q1 2024
2024-05-07 10:00:39
9.1 High
AI Score
Confidence
High
0.972 High
EPSS
Percentile
99.8%
Related for AKB:7F1C8D00-AE08-447B-86B6-756B2E89DA2B