CVE-2024-47948

Summary

CVE-2024-47948 is a high-severity vulnerability affecting JetBrains TeamCity versions prior to 2024.07.3, which allows for path traversal leading to information disclosure via server backups. The vulnerability has an exploitability score of 3.9 and could result in significant confidentiality impacts, as it does not require user interaction or elevated privileges to exploit. Organizations using affected versions are at risk of unauthorized access to sensitive information stored in backups. To remediate this issue, users should upgrade to TeamCity version 2024.07.3 or higher as recommended by JetBrains' vendor advisory. This vulnerability poses a considerable threat due to its potential for data leakage without the need for complex attack vectors.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.