Lucene search
JetBrainsVULNRICHMENT:CVE-2024-23917HistoryFeb 06, 2024 - 9:21 a.m.
CVE-2024-23917
2024-02-0609:21:31
JetBrains
github.com
6
jetbrains teamcity
authentication bypass
rce
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
7.3
Confidence
Low
EPSS
0.05
Percentile
93.0%
SSVC
Exploitation
poc
Automatable
yes
Technical Impact
total
In JetBrains TeamCity before 2023.11.3 authentication bypass leading to RCE was possible
ADP Affected
[
{
"cpes": [
"cpe:2.3:a:jetbrains:teamcity:-:*:*:*:*:*:*:*"
],
"vendor": "jetbrains",
"product": "teamcity",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "2023.11.3",
"versionType": "custom"
}
],
"defaultStatus": "unaffected"
}
]Related
nuclei
nuclei
JetBrains TeamCity > 2023.11.3 - Authentication Bypass
2024-04-30 12:52:48
hivepro
hivepro
prion
prion
Authentication flaw
2024-02-06 10:15:00
nvd
nvd
CVE-2024-23917
2024-02-06 10:15:09
cve
cve
CVE-2024-23917
2024-02-06 10:15:09
attackerkb
attackerkb
CVE-2024-23917
2024-02-06 00:00:00
cvelist
cvelist
CVE-2024-23917
2024-02-06 09:21:31
nessus
nessus
TeamCity Server < 2023.11.3 Multiple Vulnerabilities
2024-02-09 00:00:00
thn
thn
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
7.3
Confidence
Low
EPSS
0.05
Percentile
93.0%
SSVC
Exploitation
poc
Automatable
yes
Technical Impact
total
Related for VULNRICHMENT:CVE-2024-23917