Head Topics

Rapid7 throws JetBrains under the bus for 'uncoordinated vulnerability disclosure'

Australia News News

Rapid7 throws JetBrains under the bus for 'uncoordinated vulnerability disclosure'
Australia Latest News,Australia Headlines
  • 📰 TheRegister
  • ⏱ Reading Time:
  • 48 sec. here
  • 2 min. at publisher
  • 📊 Quality Score:
  • News: 23%
  • Publisher: 61%

Exploits began within hours of the original disclosure, so patch now

Rapid7 says it reported the two TeamCity vulnerabilities in mid-February, claiming JetBrains soon after suggested releasing patches for the flaws before publicly disclosing them.

Rapid7 claims that after more than a week of radio silence from JetBrains on the coordinated disclosure matter, Rapid7 spotted fresh patches for CVE-2024-27198 and CVE-2024-27199 on Monday, without a published security advisory and without telling the researchers. While JetBrains prepares to tell its side of the story – see the update below – members of the infosec community have"I know from previously working on that team that we tried hard to be friendly and cooperative with vendors. The fact that Rapid7 calls them out on their behavior means it must have been bad.

It's worth noting that CVE-2024-27198 attracts a higher severity score because it could allow attackers to take full administrative control of a TeamCity server and achieve unauthenticated remote code execution. JetBrains says these only affect the on-prem version of TeamCity. Cloud versions are already patched and weren't attacked prior to disclosure.

We have summarized this news so that you can read it quickly. If you are interested in the news, you can read the full text here. Read more:

TheRegister /  🏆 67. in UK

Australia Latest News, Australia Headlines

Similar News:You can also read news stories similar to this one that we have collected from other news sources.

The historic gated estate a stone's throw away from city centreThe historic gated estate a stone's throw away from city centreThe private estate is hidden in the shadow of Nottingham Castle
Read more »

England throw away golden opportunity as India secure record win in RajkotEngland throw away golden opportunity as India secure record win in RajkotWere England too reckless as they succumbed to a massive 434-run hammering at the hands of India in the third Test in Rajkot? And is there still cause for optimism?
Read more »

Kriss Kyle Takes Us Back to Cappadocia in Turkish DelightKriss Kyle Takes Us Back to Cappadocia in Turkish DelightCappadocia, Turkey is an unbelievable place as it is. But throw in some mind blowing riding and you have a great edit.
Read more »

Josie Gibson reacts as Ben Shephard and Cat Deeley made new This Morning hostsJosie Gibson reacts as Ben Shephard and Cat Deeley made new This Morning hostsJosie Gibson has reacted to the news that Ben Shephard and Cat Deeley are the new permanent hosts on ITV's This Morning, revealing she's going to throw a 'welcome party'
Read more »

Cheap and cheerful chana masala recipeCheap and cheerful chana masala recipeA real store cupboard favourite, these curried chickpeas are easy to throw together. Serve them with plain rice on their own or with another curry to feed the family. This recipe doubles easily and can be frozen (minus the yoghurt) or kept in the fridge for another meal.
Read more »

Rapid7 throws JetBrains under the bus for 'uncoordinated vulnerability disclosure'Rapid7 throws JetBrains under the bus for 'uncoordinated vulnerability disclosure'Exploits began within hours of the original disclosure, so patch now
Read more »



Render Time: 2025-04-08 11:51:38