"CISA Warns on JetBrains TeamCity Flaw That Could Allow Hackers to Generate Admin Accounts"
"CISA Warns on JetBrains TeamCity Flaw That Could Allow Hackers to Generate Admin Accounts"
The US Cybersecurity and Infrastructure Security Agency (CISA) has added a JetBrains vulnerability to its Known Exploited Vulnerabilities (KEV) catalog, noting evidence of active exploitation. The JetBrains flaw is a critical authentication bypass problem in the TeamCity On-Premises software that enables unauthenticated attackers to completely take over target servers. It is tracked as CVE-2024-27198 and has a severity score of 9.8.