CVE-2023-38068

CVSS 3.1 Score 7.3 of 10 (high)

Details

Published Jul 12, 2023
Updated: Jul 20, 2023
CWE ID 799

Summary

CVE-2023-38068 is a high-severity vulnerability that affects JetBrains YouTrack before version 2023.1.16597. The vulnerability arises from the improper validation of captcha for Helpdesk forms. It potentially allows attackers to exploit the system remotely without requiring any privileges or user interaction. The impact includes low integrity and confidentiality, with a base score of 7.3 out of 10. Affected products include a wide range of JetBrains software solutions. To remediate the vulnerability, organizations should update their YouTrack software to version 2023.1.16597 or later, which includes the necessary fix for proper captcha validation in Helpdesk forms.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-38068 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options