漏洞描述
TeamCity 是一款由 JetBrains 开发的强大的持续集成(Continuous Integration,CI)和持续部署(ContinuousDeployment,CD)工具。它帮助开发团队自动化构建、测试和部署过程,以确保软件项目的质量和快速交付。利用该漏洞,攻击者可以通过网络访问 TeamCity服务器,获取项目源代码。
JetBrains TeamCity 敏感信息获取(CVE-2024-27199)
PoC代码
暂无相关漏洞推荐
- JetBrains TeamCity 认证绕过漏洞(CVE-2024-23917)
- POC CVE-2023-42793: JetBrains TeamCity < 2023.05.4 - Remote Code Execution
- POC CVE-2024-23917: JetBrains TeamCity > 2023.11.3 - Authentication Bypass
- POC CVE-2024-27198: TeamCity < 2023.11.4 - Authentication Bypass
- POC CVE-2024-27199: TeamCity < 2023.11.4 - Authentication Bypass
- POC CVE-2023-42793: JetBrains TeamCity < 2023.05.4 - Remote Code Execution
- POC CVE-2024-27198: TeamCity < 2023.11.4 - Authentication Bypass
- POC CVE-2024-27199: TeamCity < 2023.11.4 - Authentication Bypass
- POC teamcity-guest-login-enabled: JetBrains TeamCity - Guest User Access Enabled
- POC teamcity-registration-enabled: JetBrains TeamCity - Registration Enabled
- JetBrains TeamCity /pwned 信息泄露漏洞(CVE-2024-27198)
- JetBrains TeamCity JspPrecompilation 身份验证绕过漏洞
- JetBrains TeamCity JspPrecompilation 身份验证绕过漏洞