CVE-2023-38062

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Jul 12, 2023

Updated: Jul 20, 2023

CWE ID 200

Summary

CVE-2023-38062 is a vulnerability affecting JetBrains TeamCity versions prior to 2023.05.1. This issue allows sensitive data, specifically passwords, to be displayed in the user interface of certain composite build configurations. This security lapse poses a significant risk, as passwords are crucial for maintaining system security and unauthorized access can lead to serious consequences. It is essential that users upgrade to a patched version of TeamCity to mitigate this vulnerability and prevent potential data breaches.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

TeamCity

Affected Vendors

JetBrains

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/r90-Y_
https://www.cve.org/CVERecord?id=CVE-2023-38062
https://nvd.nist.gov/vuln/detail/CVE-2023-38062

Back to Vulnerability Database