CVE-2023-38064
First published: Wed Jul 12 2023(Updated: )
In JetBrains TeamCity before 2023.05.1 build chain parameters of the "password" type could be written to the agent log
Credit: security@jetbrains.com security@jetbrains.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Jetbrains Teamcity | <2023.05.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2023-38064.
What is the title of this vulnerability?
The title of this vulnerability is 'In JetBrains TeamCity before 2023.05.1 build chain parameters of the password type could be written to the agent log'.
How does this vulnerability affect JetBrains TeamCity?
This vulnerability affects JetBrains TeamCity before version 2023.05.1.
What is the severity of CVE-2023-38064?
The severity of CVE-2023-38064 is medium with a CVSS score of 6.5.
How can I fix the vulnerability CVE-2023-38064?
To fix the vulnerability CVE-2023-38064, update JetBrains TeamCity to version 2023.05.1 or later.
- collector/nvd-index
- collector/nvd-latest
- agent/author
- agent/type
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/nvd-api
- agent/software-canonical-lookup-request
- agent/severity
- agent/references
- agent/weakness
- agent/tags
- agent/description
- agent/event
- collector/mitre-cve
- source/MITRE
- vendor/jetbrains
- canonical/jetbrains teamcity