CVE-2024-27199
Description
In JetBrains TeamCity before 2023.11.4 path traversal allowing to perform limited admin actions was possible
NVD
Severity: N/A
CVE ID: CVE-2024-27199
CVSS Score: N/A
CVSS Metrics: NVD assessment not yet provided.
JetBrains s.r.o.
Severity: HIGH
CVE ID: CVE-2024-27199
CVSS Score: 7.3
CVSS Metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Proof Of Concept
Nuclei Templates for CVE-2024-27199
Refrence: Project Discovery GitHub
Content on GitHub
W01fh4cker | watchers:119
CVE-2024-27198-RCE
CVE-2024-27198 & CVE-2024-27199 Authentication Bypass --> RCE in JetBrains TeamCity Pre-2023.11.4
Refrence: GitHub
Stuub | watchers:14
RCity-CVE-2024-27198
CVE-2024-27198 & CVE-2024-27199 PoC - RCE, Admin Account Creation, Enum Users, Server Information
Refrence: GitHub
Shimon03 | watchers:0
Explora-o-RCE-n-o-autenticado-JetBrains-TeamCity-CVE-2024-27198-
Em fevereiro de 2024, foi identificado duas novas vulnerabilidades que afetam o servidor JetBrains TeamCity (CVE-2024-27198 e CVE-2024-27199)
Refrence: GitHub