CVE-2023-42361

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Nov 7, 2023

Updated: Nov 15, 2023

CWE ID 918

Summary

CVE-2023-42361 is a Local File Inclusion vulnerability affecting Midori-global Better PDF Exporter for Jira Server and Jira Data Center versions 10.3.0 and earlier. An attacker can exploit this flaw by providing a crafted image during the PDF export process, enabling them to view arbitrary files and potentially cause additional impacts. This vulnerability poses a significant risk as it can lead to unauthorized access and information disclosure. It is strongly recommended that users upgrade to the latest version of the software to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/snxdu6
https://www.cve.org/CVERecord?id=CVE-2023-42361
https://nvd.nist.gov/vuln/detail/CVE-2023-42361

Back to Vulnerability Database

CVE-2023-42361

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations