A newly patched serious vulnerability in the TeamCity continuous integration and deployment server from JetBrains is currently being targeted by ransomware gangs.
The vulnerability, which has been assigned the tracking number CVE-2023-42793 and has been assigned a severity rating of 9.8/10, enables unauthenticated attackers to execute code remotely (RCE) after successfully exploiting an authentication bypass bug in low-complexity attacks that don’t involve user involvement.
One week after JetBrains released TeamCity 2023.05.4 on September 21 to address the major security issue, Swiss security company Sonar read more Ransomware gangs now exploiting critical TeamCity RCE flaw.
Stay informed with the best cybersecurity news and raise your cybersecurity awareness with our comprehensive coverage of the latest threats, breaches, and solutions.