Octopus Server | Octopus Deploy Security Advisories

Security Advisory 2022-06

Jul 15, 2022 · Vulnerability/Insecure Direct Object Reference (IDOR) Severity/medium CVSS/6.5

Insecure Direct Object Reference (IDOR) of Project Exports in Octopus Server (CVE-2022-1881)
Read More
Security Advisory 2022-05

Jun 13, 2022 · Vulnerability/Broken Access Control Severity/medium CVSS/5.7

Script Console Access via Private Space in Octopus Server (CVE-2022-2013)
Read More
Security Advisory 2022-04

May 19, 2022 · Vulnerability/Abnormal invite code functionality Severity/Low CVSS/3.4

User invitation limit in Octopus Server can be exceeded (CVE-2022-1670)
Read More
Security Advisory 2022-03

May 4, 2022 · Vulnerability/Broken-Access-Control Severity/medium CVSS/6.4

Broken access control in API for projects using Git VCS (CVE-2022-1502)
Read More
Security Advisory 2022-02

Feb 7, 2022 · Vulnerability/Open-Redirect Severity/medium CVSS/4.3

Open Redirect Vulnerability in Octopus Server (CVE-2022-23184)
Read More
Security Advisory 2022-01

Jan 19, 2022 · Vulnerability/Clear-Text-Storage-Of-Sensitive-Value Severity/medium CVSS/6.3

Cleartext Storage of Sensitive Information in Octopus Tentacle Windows Docker image (CVE-2021-31821)
Read More
Security Advisory 2021-09

Sep 22, 2021 · Vulnerability/Remote-Code-Execution Severity/High

Remote Code Execution in Octopus Server (CVE-2021-31819)
Read More
Security Advisory 2021-07

Aug 13, 2021 · Vulnerability/Clear-Text-Storage-Of-Sensitive-Value Severity/Medium

Proxy Password Stored in Plaintext (CVE-2021-31820)
Read More
Security Advisory 2021-06

Jul 8, 2021 · Vulnerability/Clear-Text-Storage-Of-Sensitive-Value Severity/Medium

Cleartext Storage of Sensitive Information (CVE-2021-31817)
Read More
Security Advisory 2021-05

Jul 8, 2021 · Vulnerability/Clear-Text-Storage-Of-Sensitive-Value Severity/Medium

Cleartext Storage of Sensitive Information (CVE-2021-31816)
Read More
- 2
- 3
- 4
- 5
- 6