The Cybersecurity and Infrastructure Security Agency (CISA) has updated its Known Exploited Vulnerabilities Catalog to include a newly identified vulnerability, CVE-2024-27198, affecting JetBrains TeamCity. This authentication bypass vulnerability has been actively exploited, prompting CISA to urge organizations to apply necessary updates promptly.
Details:
- Vulnerability ID: CVE-2024-27198
- Product Affected: JetBrains TeamCity
- Issue: Authentication Bypass Vulnerability
- Impact: Allows unauthorized access to the affected system
- Remediation: Update to TeamCity version 2023.11.4 as recommended in the JetBrains blog post titled “Additional Critical Security Issues Affecting TeamCity On-Premises (CVE-2024-27198 and CVE-2024-27199) – Update to 2023.11.4 Now.”
CISA emphasizes the importance of addressing this vulnerability due to its active exploitation and potential risks to federal enterprises. Under Binding Operational Directive (BOD) 22-01, Federal Civilian Executive Branch (FCEB) agencies are required to remediate identified vulnerabilities by the specified due date to protect their networks against active threats.
While BOD 22-01 specifically applies to FCEB agencies, CISA strongly advises all organizations to prioritize the timely remediation of vulnerabilities listed in the Catalog as part of their vulnerability management practices. The Catalog serves as a living list of known Common Vulnerabilities and Exposures (CVEs) that pose significant risk, and CISA continues to update it with vulnerabilities that meet the specified criteria.
