← back
CVE-2023-42793

CVE-2023-42793

CVSS 9.8 CRITICALEPSS 100.0%● KEVCWE-288
In short

TeamCity versions before 2023.05.4 have a flaw that allows attackers to bypass login authentication and gain full control of the server, potentially executing any code they want.

Technical detail

Authentication bypass vulnerability (CWE-288) in TeamCity Server enables unauthenticated remote code execution. The flaw permits attackers to circumvent credential validation mechanisms and achieve arbitrary command execution with server privileges, requiring only network access to the affected instance.

Summary generated and translated by AI from the official description.
In JetBrains TeamCity before 2023.05.4 authentication bypass leading to RCE on TeamCity Server was possible
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
JetBrains · TeamCity
public PoCs found17
githubgithub.com/H454NSec/CVE-2023-4279345githubgithub.com/B4l3rI0n/CVE-2023-4279310githubgithub.com/Zenmovie/CVE-2023-427939githubgithub.com/hotplugin0x01/CVE-2023-427932githubgithub.com/HusenjanDev/CVE-2023-427931githubgithub.com/SwiftSecur/teamcity-exploit-cve-2023-427931githubgithub.com/syaifulandy/Nuclei-Template-CVE-2023-42793.yaml1githubgithub.com/junnythemarksman/CVE-2023-427931githubgithub.com/cxdxnt/CVE-2023-427930githubgithub.com/whoamins/CVE-2023-427930githubgithub.com/FlojBoj/CVE-2023-427930githubgithub.com/becrevex/CVE-2023-427930githubgithub.com/jakehomb/cve-2023-427930githubgithub.com/syorik/CVE-2023-427930githubgithub.com/DDestinys/CVE-2023-427930exploitdbwww.exploit-db.com/exploits/51884unverifiedcve_referencepacketstormsecurity.com/files/174860/JetBrains-TeamCity-Unauthenticated-Remote-Code-Execution.htmlunverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://packetstormsecurity.com/files/174860/JetBrains-TeamCity-Unauthenticated-Remote-Code-Execution.htmlhttps://attackerkb.com/topics/1XEEEkGHzt/cve-2023-42793https://blog.jetbrains.com/teamcity/2023/09/cve-2023-42793-vulnerability-post-mortem/https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-42793https://www.jetbrains.com/privacy-security/issues-fixed/https://www.rapid7.com/blog/post/2023/09/25/etr-cve-2023-42793-critical-authentication-bypass-in-jetbrains-teamcity-ci-cd-servers/https://www.securityweek.com/recently-patched-teamcity-vulnerability-exploited-to-hack-servers/https://www.sonarsource.com/blog/teamcity-vulnerability/