CVE Series: Authentication Bypass Leading to Remote Code Execution (RCE) in JetBrains TeamCity (CVE-2024-27198)
CVE-2024-27198 is a critical vulnerability in JetBrains TeamCity, a Java-based open-source automation server used for application building. This flaw allows remote, unauthorized attackers to circumvent authentication, thereby gaining admin control over the server. All versions of TeamCity On-Premises up to 2023.11.3 are affected.
Course Content
CVE-2024-27198 is a critical vulnerability in JetBrains TeamCity, a Java-based open-source automation server widely used for application building, testing, and deployment. Rated with a CVSS score of 9.8, this flaw permits remote, unauthorized attackers to circumvent authentication mechanisms, thereby gaining administrative control over the server. Exploiting this vulnerability involves manipulating URL parameters to access authenticated endpoints, allowing the attacker to perform a range of actions, including the addition of administrative users. All versions of TeamCity On-Premises up to 2023.11.3 are affected. The vulnerability's root cause is the inadequate validation and handling of parameters within URL requests, which leads to an authentication bypass. In this course you’ll explore, exploit, and remediate this CVE.
Target Audience
This course is for seasoned red teamers, penetration testers, security and vulnerability assessment analysts, developers, and system administrators who want to know how to exploit and protect against the latest vulnerabilities impacting enterprise systems.
Course Level
Intermediate
Prerequisites
A basic understanding of the Linux command line, networking, and Python.
Helpful Links
Instructed by
Clint is a technical manager for a financial services company’s Responsible Disclosure Team, where he interacts with ethical hackers who find vulnerabilities in the company’s infrastructure. Clint is a former Special Agent with the Department of Justice where he specialized in internet investigations and conducted numerous cases on cyber threat actors on the surface, deep, and dark web, resulting in Clint earning the Attorney General’s Distinguished Service Award. Clint has trained over 1,000 law enforcement officers, prosecutors, and civilians on the dark web and dark market websites. Clint has a master’s degree in intelligence studies from American Military University where he graduated with honors and also has a master’s degree in Information Technology from Carnegie Mellon University where he graduated with highest distinction. As a former Navy Reserve Officer, Clint served in many roles, such as a division officer and department head for commands in the information warfare community.
