CISA Warns of Actively Exploited JetBrains TeamCity Vulnerability

JetBrains TeamCity Vulnerability

The U.S. Cybersecurity and Infrastructure Safety Company (CISA) on Thursday added a essential safety flaw impacting JetBrains TeamCity On-Premises software program to its Identified Exploited Vulnerabilities (KEV) catalog, primarily based on proof of energetic exploitation.

The vulnerability, tracked as CVE-2024-27198 (CVSS rating: 9.8), refers to an authentication bypass bug that enables for a complete compromise of a prone server by a distant unauthenticated attacker.

It was addressed by JetBrains earlier this week alongside CVE-2024-27199 (CVSS rating: 7.3), one other moderate-severity authentication bypass flaw that enables for a “restricted quantity” of knowledge disclosure and system modification.


“The vulnerabilities might allow an unauthenticated attacker with HTTP(S) entry to a TeamCity server to bypass authentication checks and acquire administrative management of that TeamCity server,” the corporate famous on the time.

JetBrains TeamCity Vulnerability

Risk actors have been noticed weaponizing the dual flaws to ship Jasmin ransomware in addition to create hundreds of rogue user accounts, in response to CrowdStrike and LeakIX. The Shadowserver Basis said it detected exploitation makes an attempt ranging from March 4, 2024.

Statistics shared by GreyNoise present that CVE-2024-27198 has come beneath broad exploitation from over a dozen distinctive IP addresses shortly after public disclosure of the flaw.

In mild of energetic exploitation, customers operating on-premises variations of the software program are suggested to use the updates as quickly as doable to mitigate potential threats. Federal companies are required to patch their situations by March 28, 2024.

Notify of
Inline Feedbacks
View all comments
Previous Post
JetBrains TeamCity Mass Exploitation Underway, Rogue Accounts Thrive

JetBrains TeamCity Mass Exploitation Underway, Rogue Accounts Thrive

Next Post
Nigerian National Pleads Guilty of Conspiracy in BEC Operation

Nigerian Nationwide Pleads Responsible of Conspiracy in BEC Operation

Related Posts