Description
The TeamCity has an authentication bypass vulnerability. An attacker can bypass the authentication with a specially crafted HTTP request and get full access to the system.
Remediation
Upgrade to the latest version of TeamCity
References
Related Vulnerabilities
WordPress Plugin Social Login Lite For WooCommerce Security Bypass (1.6.0)
Jenkins Improper Input Validation Vulnerability (CVE-2018-1999001)
phpMyFAQ CVE-2007-1032 Vulnerability (CVE-2007-1032)
OpenSSL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-0703)
Jetty Improper Neutralization of Quoting Syntax Vulnerability (CVE-2023-36479)