What is the vulnerability ID CVE-2023-42793?

The vulnerability ID CVE-2023-42793 refers to an authentication bypass vulnerability in JetBrains TeamCity before version 2023.05.4.

What is the severity of CVE-2023-42793?

The severity of CVE-2023-42793 is critical, with a severity value of 9.8.

CVE-2023-42793 allows for authentication bypass, leading to remote code execution (RCE) on the TeamCity Server.

CVE-2023-42793 affects all versions of JetBrains TeamCity before version 2023.05.4.

To fix CVE-2023-42793, update JetBrains TeamCity to version 2023.05.4 or later.

Exploited

9.8

CWE

288

19/9/2023

3/10/2023

First published: Tue Sep 19 2023(Updated: )

In JetBrains TeamCity before 2023.05.4 authentication bypass leading to RCE on TeamCity Server was possible

Credit: security@jetbrains.com security@jetbrains.com ByteHunter

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

(Found alongside the following vulnerabilities)

What is the vulnerability ID CVE-2023-42793?
The vulnerability ID CVE-2023-42793 refers to an authentication bypass vulnerability in JetBrains TeamCity before version 2023.05.4.
What is the severity of CVE-2023-42793?
The severity of CVE-2023-42793 is critical, with a severity value of 9.8.
How does CVE-2023-42793 impact JetBrains TeamCity?
CVE-2023-42793 allows for authentication bypass, leading to remote code execution (RCE) on the TeamCity Server.
What version of JetBrains TeamCity is affected by CVE-2023-42793?
CVE-2023-42793 affects all versions of JetBrains TeamCity before version 2023.05.4.
How can I fix the vulnerability CVE-2023-42793?
To fix CVE-2023-42793, update JetBrains TeamCity to version 2023.05.4 or later.