Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.TEAMCITY_2024_03_3.NASL
HistoryJul 11, 2024 - 12:00 a.m.

JetBrains TeamCity < 2024.03.3 Multiple Vulnerabilities

2024-07-1100:00:00
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
6
jetbrains teamcity
2024.03.3
multiple vulnerabilities
github app connection
ec2 cloud profile
nessus scanner
cve-2024-39878
cve-2024-39879

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

AI Score

5.2

Confidence

High

EPSS

0.001

Percentile

17.7%

JSON

The version of JetBrains TeamCity installed on the remote host is prior to 2024.03.3. It is, therefore, affected by multiple vulnerabilities as referenced in the vendor advisory.

  • In JetBrains TeamCity before 2024.03.3 private key could be exposed via testing GitHub App Connection (CVE-2024-39878)

  • In JetBrains TeamCity before 2024.03.3 application token could be exposed in EC2 Cloud Profile settings (CVE-2024-39879)

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(202212);
  script_version("1.3");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/09/18");

  script_cve_id("CVE-2024-39878", "CVE-2024-39879");
  script_xref(name:"IAVA", value:"2024-A-0383-S");

  script_name(english:"JetBrains TeamCity < 2024.03.3 Multiple Vulnerabilities");

  script_set_attribute(attribute:"synopsis", value:
"The remote host is missing one or more security updates.");
  script_set_attribute(attribute:"description", value:
"The version of JetBrains TeamCity installed on the remote host is prior to 2024.03.3. It is, therefore, affected by
multiple vulnerabilities as referenced in the vendor advisory.

  - In JetBrains TeamCity before 2024.03.3 private key could be exposed via testing GitHub App Connection
    (CVE-2024-39878)

  - In JetBrains TeamCity before 2024.03.3 application token could be exposed in EC2 Cloud Profile settings
    (CVE-2024-39879)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://www.jetbrains.com/privacy-security/issues-fixed/");
  script_set_attribute(attribute:"solution", value:
"Upgrade JetBrains TeamCity 2024.03.3 or later.");
  script_set_attribute(attribute:"agent", value:"all");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2024-39879");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2024/07/01");
  script_set_attribute(attribute:"patch_publication_date", value:"2024/07/01");
  script_set_attribute(attribute:"plugin_publication_date", value:"2024/07/11");

  script_set_attribute(attribute:"plugin_type", value:"combined");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:jetbrains:teamcity");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_set_attribute(attribute:"thorough_tests", value:"true");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Misc.");

  script_copyright(english:"This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("jetbrains_teamcity_web_detect.nbin", "jetbrains_teamcity_win_installed.nbin", "jetbrains_teamcity_nix_installed.nbin");
  script_require_keys("installed_sw/JetBrains TeamCity");

  exit(0);
}

include('vcf.inc');

var app_info = vcf::combined_get_app_info(app:'JetBrains TeamCity');

var constraints = [
  { 'fixed_version' : '2024.03.3' }
];

vcf::check_version_and_report(
    app_info:app_info,
    constraints:constraints,
    severity:SECURITY_WARNING
);

Related

cvelist 2
nvd 2
vulnrichment 2
cve 2
cvelist
cvelist
CVE-2024-39879
2024-07-01 17:07:46
CVE-2024-39878
2024-07-01 17:07:45
nvd
nvd
CVE-2024-39878
2024-07-01 17:15:09
CVE-2024-39879
2024-07-01 17:15:09
vulnrichment
vulnrichment
CVE-2024-39879
2024-07-01 17:07:46
CVE-2024-39878
2024-07-01 17:07:45
cve
cve
CVE-2024-39878
2024-07-01 17:15:09
CVE-2024-39879
2024-07-01 17:15:09

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

AI Score

5.2

Confidence

High

EPSS

0.001

Percentile

17.7%

JSON
Related for TEAMCITY_2024_03_3.NASL
cvelist2nvd2vulnrichment2cve2