Description
The TeamCity has an authentication bypass vulnerability. An attacker can bypass the authentication with a specially crafted HTTP request and get access to some admin endpoints of the system.
Remediation
Upgrade to the latest version of TeamCity
References
Related Vulnerabilities
MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-9276)
Oracle JRE CVE-2023-22044 Vulnerability (CVE-2023-22044)
MySQL CVE-2018-3286 Vulnerability (CVE-2018-3286)
Liferay Portal Incorrect Default Permissions Vulnerability (CVE-2021-38268)
Internet Information Services Other Vulnerability (CVE-2002-0364)