writeups.xyz / CVE-2024-27198 and CVE-2024-27199: JetBrains TeamCity Multiple Authentication Bypass Vulnerabilities

Submitter : c2a

Date: 4 March 2024

Bounty : undisclosed

Vulnerabilities :

• Authentication Bypass
• Security Code Review

Programs :

• JetBrains (TeamCity)

Authors :

• Rapid7

Link :
https://www.rapid7.com/blog/post/2024/03/04/etr-cve-2024-27198-and-cve-2024-27199-jetbrains-teamcity-multiple-authentication-bypass-vulnerabilities-fixed/