CVE-2024-27198 — Vulnetix

CVE-2024-27198 PUBLISHED KEV CVSS 9.300000190734863 CRITICAL

Exploitation of CVE-2024-27198 and CVE-2024-27199 can give an attacker the possibility to bypass authentication (CVE-2024-27198) and open the risk for path traversal (CVE-2024-27199).

EPSS 93.05% · 99.8th percentile

Risk Scores

CVSS v4.0

9.300000190734863

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

EPSS Score

93.05%

99.8th percentile

Timeline

Jan 20, 1970 CrowdSec Sighting
Jan 20, 1970 CrowdSec Sighting
Jan 20, 1970 CrowdSec Sighting
Jan 20, 1970 VulnCheck XDB Entry
Jan 20, 1970 VulnCheck XDB Entry
Jan 20, 1970 VulnCheck XDB Entry
Jan 20, 1970 VulnCheck XDB Entry
Jan 20, 1970 VulnCheck XDB Entry
Jan 20, 1970 VulnCheck XDB Entry
Jan 20, 1970 VulnCheck XDB Entry
Jan 20, 1970 VulnCheck XDB Entry
Jan 20, 1970 VulnCheck XDB Entry

References

https://ccb.belgium.be/advisories/warning-authentication-bypass-and-path-traversal-vulnerabilities-jetbrains-teamcity advisory
https://nvd.nist.gov/vuln/detail/CVE-2024-27198 vendor
https://nvd.nist.gov/vuln/detail/CVE-2024-27199 vendor
https://www.cisa.gov/news-events/alerts/2026/04/20/cisa-adds-eight-known-exploited-vulnerabilities-catalog vendor
https://www.jetbrains.com/privacy-security/issues-fixed/ technical

Open in Interactive Console →