Severity/Medium | Octopus Deploy Security Advisories

Security Advisory 2022-08

Jul 18, 2022 · Vulnerability/Logging Severity/medium CVSS/6.4

Lack of auditing and logging for artifacts in Octopus Server (CVE-2022-30532)
Read More
Security Advisory 2022-07

Jul 15, 2022 · Vulnerability/Stored XSS Severity/medium CVSS/6.8

Stored Cross-Site Scripting (XSS) in Octopus Server help sidebar (CVE-2022-29890)
Read More
Security Advisory 2022-06

Jul 15, 2022 · Vulnerability/Insecure Direct Object Reference (IDOR) Severity/medium CVSS/6.5

Insecure Direct Object Reference (IDOR) of Project Exports in Octopus Server (CVE-2022-1881)
Read More
Security Advisory 2022-05

Jun 13, 2022 · Vulnerability/Broken Access Control Severity/medium CVSS/5.7

Script Console Access via Private Space in Octopus Server (CVE-2022-2013)
Read More
Security Advisory 2022-03

May 4, 2022 · Vulnerability/Broken-Access-Control Severity/medium CVSS/6.4

Broken access control in API for projects using Git VCS (CVE-2022-1502)
Read More
Security Advisory 2022-02

Feb 7, 2022 · Vulnerability/Open-Redirect Severity/medium CVSS/4.3

Open Redirect Vulnerability in Octopus Server (CVE-2022-23184)
Read More
Security Advisory 2022-01

Jan 19, 2022 · Vulnerability/Clear-Text-Storage-Of-Sensitive-Value Severity/medium CVSS/6.3

Cleartext Storage of Sensitive Information in Octopus Tentacle Windows Docker image (CVE-2021-31821)
Read More
Security Advisory 2021-13

Dec 13, 2021 · Vulnerability/Vulnerable-Dependency Severity/Medium

Octopus Java Client SDK log4j2 dependency (CVE-2021-44228)
Read More
Security Advisory 2021-07

Aug 13, 2021 · Vulnerability/Clear-Text-Storage-Of-Sensitive-Value Severity/Medium

Proxy Password Stored in Plaintext (CVE-2021-31820)
Read More
Security Advisory 2021-06

Jul 8, 2021 · Vulnerability/Clear-Text-Storage-Of-Sensitive-Value Severity/Medium

Cleartext Storage of Sensitive Information (CVE-2021-31817)
Read More
- 1
- 2
- 3
- 4