Critical Security Update Released for JetBrains TeamCity Server
The vulnerability known as CVE-2023-42793 can result in remote code execution if exploited
Summary
The vulnerability known as CVE-2023-42793 can result in remote code execution if exploited
Affected platforms
The following platforms are known to be affected:
Threat details
Introduction
JetBrains has released a security update regarding a critical vulnerability affecting TeamCity Server in versions prior to 2023.05.4.
The critical vulnerability tracked as CVE-2023-42793 is an authentication bypass vulnerability, which could allow an unauthenticated attacker to perform remote code execution (RCE).
Exploitation in the wild for CVE-2023-42793
A publicly available proof of concept exploiting CVE-2023-42793 has been released.
13 December 2023 - In a joint advisory, national security organisations including the U.S. CISA, UK NCSC and CERT Poland have warned of a global exploitation campaign targeting CVE-2023-42793 attributed to the Russian Foreign Intelligence Service (SVR), also tracked as 'Midnight Blizzard', 'APT29' and 'Cozy Bear'.
Observed post exploitation activity includes privilege escalation, lateral movement and the deployment of backdoors to ensure persistent access to compromised networks.
View the advisory here - https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-347a
Threat updates
| Date | Update |
|---|---|
| 14 Dec 2023 |
Global Exploitation Campaign by Russian Foreign Intelligence Service (SVR)
This cyber alert has been updated to reflect recent developments in exploitation of this vulnerability. |
| 5 Oct 2023 |
Exploitation in the wild for CVE-2023-42793
This cyber alert has been updated to reflect this change. |
| 28 Sep 2023 |
Proof-of-concept publicly released
This cyber alert has been updated to reflect this change. |
Remediation advice
Affected organisations are strongly encouraged to review the JetBrains security update and update TeamCity Server to the remediated version.
Definitive source of threat updates
CVE Vulnerabilities
Last edited: 14 December 2023 1:59 pm