CVE-2024-27198 allows unauthenticated attackers to completely compromise JetBrains TeamCity servers. North Korean APT groups actively exploited this to backdoor CI/CD pipelines. Upgrade to TeamCity 2023.11.4+ immediately and audit all recent user account creations and plugin installations.
JetBrains TeamCity authentication bypass vulnerability allows unauthenticated attackers to gain administrative control.
Supernova subscribers receive AI-triaged CVE alerts the moment they're published — before the PoC drops.
Start Supernova — $99/mo →