Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Exploit for Authentication Bypass Using an Alternate Path or Channel in Jetbrains Teamcity

πŸ—“οΈΒ 22 Apr 2024Β 22:24:14TypeΒ 
githubexploit
Β githubexploitπŸ‘Β 248Β Views

RCity is a Python script exploiting CVE-2024-27198 (RCE & Admin Account Creation) and CVE-2024-27199 (Auth Bypass) on vulnerable TeamCity servers. It facilitates unauthorized admin account creation, bypasses 403's, and achieves RCE. Script allows interaction with the server, remote code execution, user enumeration, and gathering server details

Show more

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Related
ReporterTitlePublishedViews
Family
Trend Micro Simply Security		TeamCity Vulnerability Exploits Lead to Jasmin Ransomware, Other Malware Types
19 Mar 202400:00
–trendmicroblog
GithubExploit		Exploit for Authentication Bypass Using an Alternate Path or Channel in Jetbrains Teamcity
16 Aug 202405:39
–githubexploit
GithubExploit		Exploit for Authentication Bypass Using an Alternate Path or Channel in Jetbrains Teamcity
7 Mar 202415:12
–githubexploit
GithubExploit		Exploit for Authentication Bypass Using an Alternate Path or Channel in Jetbrains Teamcity
6 Mar 202403:15
–githubexploit
GithubExploit		Exploit for Authentication Bypass Using an Alternate Path or Channel in Jetbrains Teamcity
8 Mar 202412:40
–githubexploit
GithubExploit		Exploit for Authentication Bypass Using an Alternate Path or Channel in Jetbrains Teamcity
9 Mar 202404:04
–githubexploit
GithubExploit		Exploit for Path Traversal in Jetbrains Teamcity
22 Apr 202422:14
–githubexploit
GithubExploit		Exploit for Authentication Bypass Using an Alternate Path or Channel in Jetbrains Teamcity
5 Mar 202405:43
–githubexploit
GithubExploit		Exploit for CVE-2024-30851
4 Apr 202422:59
–githubexploit
GithubExploit		Exploit for Authentication Bypass Using an Alternate Path or Channel in Jetbrains Teamcity
9 Oct 202413:36
–githubexploit
Rows per page

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. ContactΒ us for a demo andΒ discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
22 Apr 2024 22:14Current
10High risk
Vulners AI Score10
CVSS39.8
EPSS0.94577
SSVC
teamcitypython scriptremote code executionadmin accountcve-2024-27198cve-2024-27199authorization bypassserver details
248
.json
Report