{"uuid": "80e7ccd6-24f0-4eee-a522-bf58d55cd245", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-27199", "type": "published-proof-of-concept", "source": "https://t.me/Teamx1945x/3613", "content": "CVE-2024-27198 \u0648 -27199: \u062a\u062c\u0627\u0648\u0632 \u0627\u0644\u0645\u0635\u0627\u062f\u0642\u0629 \u0641\u064a JetBrains TeamCity\u060c \u062a\u0642\u064a\u064a\u0645 9.8 \ud83d\udd25\n\n\u062a\u0644\u0643 \u0627\u0644\u062b\u063a\u0631\u0627\u062a \u0642\u062f \u062a\u0645\u0643\u0646 \u0627\u0644\u0645\u0647\u0627\u062c\u0645 \u0645\u0646 \u062a\u062c\u0627\u0648\u0632 \u0641\u062d\u0648\u0635\u0627\u062a \u0627\u0644\u0645\u0635\u0627\u062f\u0642\u0629 \u0648\u0627\u0644\u062d\u0635\u0648\u0644 \u0639\u0644\u0649 \u0623\u0630\u0648\u0646\u0627\u062a \u0625\u062f\u0627\u0631\u064a\u0629 \u0639\u0644\u0649 \u062e\u0627\u062f\u0645 TeamCity. \u062a\u0623\u062b\u0631\u062a \u062c\u0645\u064a\u0639 \u0627\u0644\u0625\u0635\u062f\u0627\u0631\u0627\u062a \u062d\u062a\u0649 2023.11.3!\n\n\u0627\u0644\u0631\u0627\u0628\u0637: [https://nt.ls/7DYva](https://nt.ls/7DYva)\n\ud83d\udc49 Dork: http.headers.set_cookie:TCSESSIONID NOT http.body:\"2023.11.3\" NOT http.body:\"2023.11.4\"\n\n\u0627\u0644\u062a\u062d\u0630\u064a\u0631 \u0627\u0644\u062e\u0627\u0635 \u0628\u0627\u0644\u0628\u0627\u0626\u0639: [https://blog.jetbrains.com/teamcity/2024/03/additional-critical-security-issues-affecting-teamcity-on-premises-cve-2024-27198-and-cve-2024-27199-update-to-2023-11-4-now/](https://blog.jetbrains.com/teamcity/2024/03/additional-critical-security-issues-affecting-teamcity-on-premises-cve-2024-27198-and-cve-2024-27199-update-to-2023-11-4-now/)", "creation_timestamp": "2024-04-20T11:46:51.000000Z"}