CVE-2024-27198 allows unauthenticated attackers to completely compromise JetBrains TeamCity servers. North Korean APT groups actively exploited this to backdoor CI/CD pipelines. Upgrade to TeamCity 2023.11.4+ immediately and audit all recent user account creations and plugin installations.
JetBrains TeamCity authentication bypass vulnerability allows unauthenticated attackers to gain administrative control.
Exploit-DB.ai delivers real-time AI-triaged zero-day alerts directly to your inbox.
Activate Supernova →