Tag
teamcity
Safeguard articles tagged "teamcity" — guides, analysis, and best practices for software supply chain and application security.
3 articles
DevSecOps
TeamCity Authentication Bypass Exploited by Nation-State ...
A critical TeamCity authentication bypass, CVE-2023-42793, let APT29 and North Korean hackers seize build servers for supply chain attacks.
Nov 25, 20257 min read
DevSecOps
TeamCity Authentication Bypass Enabling Admin Account Cre...
CVE-2024-27198 lets unauthenticated attackers bypass TeamCity login and create admin accounts, with active exploitation and ransomware activity observed.
Nov 25, 20257 min read
Vulnerability Analysis
JetBrains TeamCity CVE-2023-42793: When Your Build Server Becomes the Attack Vector
A critical authentication bypass in TeamCity allowed unauthenticated attackers to gain admin access to CI/CD servers. State-sponsored groups exploited it to compromise software supply chains.
Oct 3, 20236 min read