Unrated severityCISA KEVNVD Advisory· Published Sep 19, 2023· Updated Oct 21, 2025
CVE-2023-42793
CVE-2023-42793
Description
In JetBrains TeamCity before 2023.05.4 authentication bypass leading to RCE on TeamCity Server was possible
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
7- packetstormsecurity.com/files/174860/JetBrains-TeamCity-Unauthenticated-Remote-Code-Execution.htmlmitre
- attackerkb.com/topics/1XEEEkGHzt/cve-2023-42793mitre
- blog.jetbrains.com/teamcity/2023/09/cve-2023-42793-vulnerability-post-mortem/mitre
- www.jetbrains.com/privacy-security/issues-fixed/mitre
- www.rapid7.com/blog/post/2023/09/25/etr-cve-2023-42793-critical-authentication-bypass-in-jetbrains-teamcity-ci-cd-servers/mitre
- www.securityweek.com/recently-patched-teamcity-vulnerability-exploited-to-hack-servers/mitre
- www.sonarsource.com/blog/teamcity-vulnerability/mitre
News mentions
2- Inside the customer environment: Where threat actors, vulnerabilities, and exposed assets intersectTenable Blog · May 27, 2026
- JetBrains TeamCity vulnerability allows privilege escalation, API exposure (CVE-2026-44413)Help Net Security · May 12, 2026