Octopus Deploy 2020.1.16

CPE Details

Octopus Deploy 2020.1.16
octopus
octopus_deploy
2020.1.16
2020-09-10
14h11 +00:00
2022-07-27
14h57 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:octopus:octopus_deploy:2020.1.16:*:*:*:*:*:*:*

Informations

Vendor

octopus

Product

octopus_deploy

Version

2020.1.16

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2023-2247 2023-05-01 22h00 +00:00 In affected versions of Octopus Deploy it is possible to unmask variable secrets using the variable preview function
5.3
Medium
CVE-2021-26556 2021-10-06 23h00 +00:00 When Octopus Server is installed using a custom folder location, folder ACLs are not set correctly and could lead to an unprivileged user using DLL side-loading to gain privileged access.
7.8
High
CVE-2020-26161 2020-10-26 16h29 +00:00 In Octopus Deploy through 2020.4.2, an attacker could redirect users to an external site via a modified HTTP Host header.
6.1
Medium
CVE-2020-27155 2020-10-22 14h48 +00:00 An issue was discovered in Octopus Deploy through 2020.4.4. If enabled, the websocket endpoint may allow an untrusted tentacle host to present itself as a trusted one.
7.5
High
CVE-2020-25825 2020-10-12 14h09 +00:00 In Octopus Deploy 3.1.0 to 2020.4.0, certain scripts can reveal sensitive information to the user in the task logs.
7.5
High