A huge collection of 3400+ free website templates JAR theme com WP themes and more at the biggest community-driven free web design site

Alerts

Critical Security Issues in TeamCity On-Premises (CVE-2024-27198 and CVE-2024-27199)

7th March 2024

Advisory No: TZCERT/SA/2024/03/06

Date of First Release: 6th March 2024

Source: JetBrains

Software Affected: TeamCity On-Premises

Overview:

Vulnerabilities exists in JetBrains TeamCity On-Premises software which allows an unauthenticated attacker with HTTP(S) access to a TeamCity server to bypass authentication checks and gain administrative control of that TeamCity server.

CVE-2024-27198 (CVSS base score of 9.8 – Critical): is an authentication bypass vulnerability in the web component of TeamCity that arises from an alternative path issue (CWE-288).

CVE-2024-27199 (CVSS base score of 7.3 – High): is an authentication bypass vulnerability in the web component of TeamCity that arises from a path traversal issue (CWE-22).

TeamCity Cloud servers have already been patched.

Impact:

Successful exploitation of these vulnerabilities may allow an unauthenticated attacker to bypass the authentication checks and gain administrative control of the TeamCity server.

Solution:

A workaround for these vulnerabilities has been released. Users and administrators are encouraged to

  1. Apply released updates on their servers to version 2023.11.4.
  1. Apply Security Plugin patch released if you unable to update your server. Security patch can be downloaded through TeamCity 2018.2 and newer and TeamCity 2018.1 and older

References:

  1. https://blog.jetbrains.com/teamcity/2024/03/additional-critical-security-issues-affecting-teamcity-on-premises-cve-2024-27198-and-cve-2024-27199-update-to-2023-11-4-now/
  1. https://www.rapid7.com/blog/post/2024/03/04/etr-cve-2024-27198-and-cve-2024-27199-jetbrains-teamcity-multiple-authentication-bypass-vulnerabilities-fixed/

TZCERT-SU-24-0236 (Mageia Security Update)

6th March 2024

Mageia has released security updates to address vulnerabilities in its multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of an affected system.

Users and Administrators are encouraged to review Mageia Security Advisories dated 4th and 5th March of 2024 and apply necessary updates.

TZCERT-SU-24-0235 (Chrome Security Update)

6th March 2024

Google has released security updates to address vulnerabilities in Chrome Dev for Desktop for Windows, Mac and Linux. Exploitation of these vulnerabilities may allow an attacker to take control of an affected system.

Users and Administrators are encouraged to review Chrome Releases and apply necessary updates.

TZCERT-SU-24-0234 (Oracle Linux Security Update)

6th March 2024

Oracle has released security updates to address vulnerabilities in its multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of an affected system.

Users and Administrators are encouraged to review Oracle Security Advisories dated 4th March 2024 and apply necessary updates.

TZCERT-SU-24-0233 (Android Security Update)

6th March 2024

Google has released security updates to address vulnerabilities in Android OS. Exploitation of these vulnerabilities may allow an attacker to take control of an affected system.

Users and Administrators are encouraged to review Android Security Bulletin and apply necessary updates.

DISCLAIMER |FAQ |CONTACT US
Tanzania Computer Emergency Response Team © Copyright 2024, All Rights Reserved.