Security Advisory

JetBrains TeamCity Security Update Advisory (CVE-2024-23917)

  • Feb 06 2024

Overview

An update has been made available to fix vulnerabilities in JetBrains TeamCity. Users of affected versions are advised to update to the latest version.
 

Affected Products

JetBrains TeamCity versions from 2017.1 through 2023.11.2

 

Resolved Vulnerabilities

Authentication bypass vulnerability leading to remote code execution in JetBrains TeamCity (CVE-2024-23917)

 

Vulnerability Patches

A vulnerability patch was made available in the February 6, 2024 update. Please follow the instructions on the reference site to update to the latest vulnerability patch version.

JetBrains TeamCity 2023.11.3 version

 

Referenced Sites

[1] CVE-2024-23917 Detail
https://nvd.nist.gov/vuln/detail/CVE-2024-23917
[2] Critical Security Issue Affecting TeamCity On-Premises (CVE-2024-23917) – Update to 2023.11.3 Now
https://blog.jetbrains.com/teamcity/2024/02/critical-security-issue-affecting-teamcity-on-premises-CVE-2024-23917/ 
[3] Fixed security issues
https://www.jetbrains.com/privacy-security/issues-fixed/

Tags:

Previous Post

Next Post