GobyVuls/JetBrains_TeamCity_remote_command_execution_vulnerability.md at 473574e90ebda55938c7dea6730e9571c00f49f9 - GobyVuls - 临风笛

admin/GobyVuls

mirror of https://github.com/gobysec/GobyVuls.git synced 2025-05-05 18:27:13 +00:00

Goby 42897d9cbb

Create JetBrains_TeamCity_remote_command_execution_vulnerability.md

2023-10-13 15:33:16 +08:00

1.3 KiB

Raw Blame History

JetBrains TeamCity remote command execution vulnerability (CVE-2023-42793)

Vulnerability	JetBrains TeamCity remote command execution vulnerability (CVE-2023-42793)
Chinese name	JetBrains TeamCity 远程命令执行漏洞（CVE-2023-42793）
CVSS core	9.8
FOFA Query (click to view the results directly)	app="JET_BRAINS-TeamCity"
Number of assets affected	26963
Description	JetBrains TeamCity is a general CI/CD software platform developed by JetBrains.JetBrains TeamCity can obtain the valid token of the corresponding id user by accessing the /app/rest/users/{{id}}/tokens/RPC2 endpoint. Accessing the restricted endpoint with the admin token will cause remote command execution or the creation of a background administrator user.
Impact	JetBrains TeamCity can obtain the valid token of the corresponding id user by accessing the /app/rest/users/{{id}}/tokens/RPC2 endpoint. Accessing the restricted endpoint with the admin token will cause remote command execution or the creation of a background administrator user.