CVE-2023-38689

CVSS 3.1 Score 8.1 of 10 (high)

Details

Published Aug 4, 2023
Updated: Aug 11, 2023
CWE ID 502

Summary

CVE-2023-38689 is a vulnerability in the Logistics Pipes modification for Minecraft Java Edition. The vulnerability exists in versions ranging from 0.7.0.91 to 0.10.0.71 and allows for remote code execution when specially crafted network packets are sent after connecting. The issue was fixed in 2016, but it affects millions of downloads from various platforms. Users on Minecraft version 1.7.10 should check their Logistics Pipes version and update if the version number is smaller than 0.10.0.71 to mitigate the risk of exploitation. The vulnerability has a high severity rating, with potential impacts on integrity and confidentiality of affected systems, and can be exploited over a network without requiring any privileges or user interaction.

Leverage our Vulnerability Intelligence module to secure your systems now - get detailed insights on CVE-2024-37364. Book your demo today.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-38689 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options