Hub WAF rule

More info

vpatch-CVE-2023-42793 WAF Rule

« JetBrains TeamCity - Authentication Bypass »
v0.4 by crowdsecurity
WAF rule

JetBrains Teamcity Auth Bypass (CVE-2023-42793)

Installation

cscli appsec-rules install crowdsecurity/vpatch-CVE-2023-42793

YAML Configuration

1name: crowdsecurity/vpatch-CVE-2023-42793
2description: "JetBrains Teamcity Auth Bypass (CVE-2023-42793)"
3rules:
4  - zones:
5    - URI
6    transform:
7    - lowercase
8    match:
9      type: endsWith
10      value: /rpc2
11labels:
12  type: exploit
13  service: http
14  confidence: 3
15  spoofable: 0
16  behavior: "http:exploit"
17  label: "JetBrains TeamCity - Authentication Bypass"
18  classification:
19   - cve.CVE-2023-42793
20   - attack.T1595
21   - attack.T1190
22   - cwe.CWE-288
23

Hub WAF rule

« JetBrains TeamCity - Authentication Bypass »v0.4 by crowdsecurityWAF rule

« JetBrains TeamCity - Authentication Bypass »
v0.4 by crowdsecurity
WAF rule