- Description
- In JetBrains TeamCity before 2023.05.4 authentication bypass leading to RCE on TeamCity Server was possible
- Source
- cve@jetbrains.com
- NVD status
- Analyzed
- Products
- teamcity
CVSS 3.1
- Type
- Primary
- Base score
- 9.8
- Impact score
- 5.9
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- CRITICAL
Data from CISA
- Vulnerability name
- JetBrains TeamCity Authentication Bypass Vulnerability
- Exploit added on
- Oct 4, 2023
- Exploit action due
- Oct 25, 2023
- Required action
- Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
- Hype score
- Not currently trending
North Korean state-backed group Andariel is actively exploiting critical vulnerabilities like CVE-2023-46604 and CVE-2023-42793. Leveraging tools like Ladon and AnyDesk, they are backdooring networks. Read more at the link below. https://t.co/2I8vZywkf5 #CyberSecurity
@socradar
27 Feb 2026
613 Impressions
6 Retweets
15 Likes
9 Bookmarks
0 Replies
0 Quotes
🚨 CVE-2023-42793: TeamCity Auth Bypass to Unauthenticated RCE ⚠️ Only for educational purposes & ethical hacking 👍 Like, comment & share if this helped! #CyberSecurity #EthicalHacking #CVE #Exploit #PoC #RedTeam #BugBounty #Infosec #Pentesting #OSCP https://t.co
@r0otk3r
5 Jan 2026
103 Impressions
1 Retweet
1 Like
0 Bookmarks
0 Replies
0 Quotes
🔴 GitProxy, Branch Approval Bypass, #CVE-2023-42793 (High) https://t.co/KRTts6MhWW
@dailycve
30 Jul 2025
10 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Russian APT29 (a.k.a Cozy Bear) is back, exploiting unpatched Zimbra and TeamCity servers at scale. Their tickets in to the infected systems were the CVE-2022-27924 and CVE-2023-42793 vulnerabilities, which enabled them to steal credentials, run ransomware, and stage https://t.c
@AdminByRequest
2 Jul 2025
337 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
Russian SVR exploits JetBrains TeamCity CVE-2023-42793 to target tech firms globally, using advanced tactics for data theft since 2013. Vigilance is crucial to safeguard networks. 🇷🇺 #JetBrains #SVR #CyberThreats #ThreatResearch link: https://t.co/a5jwgqNi38 https://t.co/6igsM
@TweetThreatNews
7 Jan 2025
36 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:jetbrains:teamcity:*:*:*:*:*:*:*:*",
"matchCriteriaId": "6728FE9D-39E3-4F30-9301-5D5E07AD9CBC",
"versionEndExcluding": "2023.05.4",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
]