Primary

Context

JetBrains Hub Race Condition Vulnerability Allowing Agent-User Limit Bypass

Vulnerability

Patched

A race condition vulnerability has been identified in JetBrains Hub versions prior to 2025.3.104432. This vulnerability allows for the bypass of the agent-user limit by exploiting the invitation process.

Impact

Exploitation of this vulnerability could lead to unauthorized bypassing of user limits, allowing for potential misuse of agent-user allocations.

Remediation

Users can update to JetBrains Hub version 2025.3.104432 or later to address this vulnerability.

Added: Nov 10, 2025, 2:33 PM

Updated: Nov 10, 2025, 3:22 PM

Vulnerability Rating

Custom Algorithm

spread

0.8

impact

0.6

exploitability

4.4

remediation

7.7

relevance

1.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.8

impact

0.6

exploitability

4.4

remediation

7.7

relevance

1.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

JetBrains Hub Race Condition Vulnerability Allowing Agent-User Limit Bypass

Vulnerability

Impact

Remediation

Affected Products

JetBrains Hub

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating