CVE-2024-36378

Name of the Vulnerable Software and Affected Versions JetBrains TeamCity versions prior to 2024.03.2

Description The issue is related to the use of incorrect authentication tokens due to unlimited resource allocation, which can lead to a denial of service. This can be exploited by a remote attacker. The estimated number of potentially affected devices is not specified. There is no information about real-world incidents where this issue was exploited.

Recommendations For versions prior to 2024.03.2, update to version 2024.03.2 or later to resolve the issue. As a temporary workaround, consider restricting access to authentication tokens to minimize the risk of exploitation.