tldr - powered by Generative AI

• JetBrains patched 26 security issues in TeamCity to reduce the risk of malicious attacks.
• TeamCity 2024.03 includes patches for seven CVEs, including a high-severity flaw that can bypass two-factor authentication.
• Introduction of semi-automatic security updates in TeamCity 2024.03 to swiftly address major vulnerabilities.
• Communication breakdown between Rapid7 and JetBrains led to a critical flaw (CVE-2024-27198) being exploited in the wild shortly after being patched.
• Timely and transparent communication between security researchers and vendors is crucial to prevent exploitation of vulnerabilities.