CVE-2023-38065
CVSS 3.1 Score 4.6 of 10 (medium)
Details
Summary
CVE-2023-38065 is a vulnerability found in JetBrains TeamCity before 2023.05.1, where a stored cross-site scripting (XSS) attack could occur while viewing the build log. This vulnerability affects various products, including r5783l, r5783k, r5783n, osX01c, and others. The risk score for this vulnerability is 26 out of 100. To remediate this issue, organizations should update their TeamCity installation to version 2023.05.1 or newer. The potential danger of this vulnerability lies in the ability for attackers to inject malicious code into the build log, potentially leading to unauthorized access or manipulation of sensitive information within the organization's TeamCity environment.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Advisories, Assessments, and Mitigations
Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future
- Gain complete coverage of your cyber, third party, and physical attack surface
- Proactively mitigate threats before they turn into costly attacks
- Make fast, effective, data-driven decisions