Essential JetBrains TeamCity On-Premises Flaws Might Result in Server Takeovers

JetBrains TeamCity

A brand new pair of safety vulnerabilities have been disclosed in JetBrains TeamCity On-Premises software program that may very well be exploited by a menace actor to take management of affected methods.

The issues, tracked as CVE-2024-27198 (CVSS rating: 9.8) and CVE-2024-27199 (CVSS rating: 7.3), have been addressed in model 2023.11.4. They influence all TeamCity On-Premises variations by means of 2023.11.3.

“The vulnerabilities could allow an unauthenticated attacker with HTTP(S) entry to a TeamCity server to bypass authentication checks and achieve administrative management of that TeamCity server,” JetBrains said in an advisory launched Monday.

Cybersecurity

TeamCity Cloud cases have already been patched in opposition to the 2 flaws. Cybersecurity agency Rapid7, which found and reported the problems on February 20, 2024, mentioned CVE-2024-27198 is a case of authentication bypass that permits for a whole compromise of a vulnerable server by a distant unauthenticated attacker.

“Compromising a TeamCity server permits an attacker full management over all TeamCity tasks, builds, brokers and artifacts, and as such is an appropriate vector to place an attacker to carry out a provide chain assault,” the corporate noted.

CVE-2024-27199, additionally an authentication bypass flaw, stems from a path traversal situation that may allow an unauthenticated attacker to switch the HTTPS certificates in a susceptible TeamCity server with a certificates of their selecting by way of the “/app/https/settings/uploadCertificate” endpoint and even alter the port quantity the HTTPS service listens on.

A menace actor may leverage the vulnerability to carry out a denial-of-service in opposition to the TeamCity server by both altering the HTTPS port quantity, or by importing a certificates that may fail client-side validation. Alternatively, the uploaded certificates may very well be used for adversary-in-the-middle eventualities if it is trusted by the shoppers.

“This authentication bypass permits for a restricted variety of authenticated endpoints to be reached with out authentication,” Rapid7 mentioned of the shortcoming.

Cybersecurity

“An unauthenticated attacker can leverage this vulnerability to each modify a restricted variety of system settings on the server, in addition to disclose a restricted quantity of delicate data from the server.”

The event comes practically a month after JetBrains launched fixes to comprise one other flaw (CVE-2024-23917, CVSS rating: 9.8) that would additionally allow an unauthenticated attacker to achieve administrative management of TeamCity servers.

With safety vulnerabilities in JetBrains TeamCity having come underneath lively exploitation final yr by North Korean and Russian menace actors, it is important that customers take steps to replace their servers instantly.


Total
0
Shares
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments
Previous Post
Seoul Spies Say North Korea Hackers Stole Semiconductor Secrets

Seoul Spies Say North Korea Hackers Stole Semiconductor Secrets and techniques

Next Post
NTLM Hashes

Thread Hijacking Assault Targets IT Networks, Stealing NTLM Hashes

Related Posts