CVE-2023-42793: Critical Authentication Bypass in JetBrains TeamCity CI/CD Servers

On September 20, 2023, JetBrains disclosed CVE-2023-42793, a critical authentication bypass vulnerability in on-premises instances of their TeamCity CI/CD server. Successful exploitation could make the vulnerability a potential supply chain attack vector.

attack attack vector authentication authentication bypass bypass bypass vulnerability critical cve emergent threat response exploitation jetbrains teamcity september server servers supply supply chain supply chain attack vulnerability vulnerability risk management