JetBrains TeamCity Agent XML-RPC Port RCE
Critical Nessus Plugin ID 94675
Synopsis
The remote host is affected by a remote command execution vulnerability.
Description
The JetBrains TeamCity agent running on the remote host is affected by a remote command execution vulnerability due to the agent behaving as a bidirectional agent even when the unidirectional protocol is enabled. An unauthenticated, remote attacker can exploit this to execute commands via the XML-RPC port, resulting in the disclosure of sensitive information, a denial of service condition, or the execution of arbitrary shell commands.
Solution
Use unidirectional agent communication and upgrade JetBrains TeamCity agent to version 10.0 (42002) or later.