What is the Attack?
Multiple cyberthreat actors seen exploiting the authentication bypass flaw in JetBrains TeamCity that could lead to remote code execution. If compromised, access to a TeamCity server would provide malicious actors with access to the software developer’s source code, signing certificates, and the ability to manipulate software compilation and deployment processes. The malicious actors could further use to conduct supply chain operations.
What is the Vendor Solution?
JetBrains released patch on September 18, 2023 to fix the affected TeamCity software on version 2023.05.4, which can be found here: https://www.jetbrains.com/teamcity/download/other.html.
What FortiGuard Coverage is available?
FortiGuard Labs has an IPS signature “JetBrains.TeamCity.CVE-2023-42793.Authentication.Bypass” (with default action is set to “block”) in place and has released Antivirus signatures for the known and related malware to the campaigns targeting the vulnerability (CVE-2023-42793).
More Stories
php-tcpdf-6.9.1-1.fc40
FEDORA-2025-b5809de628 Packages in this update: php-tcpdf-6.9.1-1.fc40 Update description: Version 6.9.1 (2025-04-03) Fixed Path Traversal security vulnerability reported by Positive Technologies....
php-tcpdf-6.9.1-1.fc42
FEDORA-2025-39c7a4c7ce Packages in this update: php-tcpdf-6.9.1-1.fc42 Update description: Version 6.9.1 (2025-04-03) Fixed Path Traversal security vulnerability reported by Positive Technologies....
php-tcpdf-6.9.1-1.fc41
FEDORA-2025-85549e07c8 Packages in this update: php-tcpdf-6.9.1-1.fc41 Update description: Version 6.9.1 (2025-04-03) Fixed Path Traversal security vulnerability reported by Positive Technologies....
perl-Crypt-URandom-Token-0.003-1.fc41 perl-DBIx-Class-EncodedColumn-0.11000-1.fc41
FEDORA-2025-0a8c805972 Packages in this update: perl-Crypt-URandom-Token-0.003-1.fc41 perl-DBIx-Class-EncodedColumn-0.11000-1.fc41 Update description: Needed for perl-DBIx-Class-EncodedColumn-0.11 Read More
USN-7417-1: libdbd-mysql-perl vulnerabilities
It was discovered that libdbd-mysql-perl did not correctly handle certain SQL queries. An attacker could possibly use this issue to...
USN-7416-1: Kamailio vulnerabilities
Stelios Tsampas discovered that Kamailio did not correctly handle certain memory operations, which could lead to a buffer overflow. A...