Lucene search
PRIOn knowledge basePRION:CVE-2019-19375HistoryNov 28, 2019 - 5:15 p.m.
Cross site request forgery (csrf)
2019-11-2817:15:00
PRIOn knowledge base
www.prio-n.com
1
In Octopus Deploy before 2019.10.7, in a configuration where SSL offloading is enabled, the CSRF cookie was sometimes sent without the secure attribute. (The fix for this was backported to LTS versions 2019.6.14 and 2019.9.8.)
| CPE | Name | Operator | Version |
|---|---|---|---|
| octopus_deploy | ge | 2019.9.0 | |
| octopus_deploy | lt | 2019.9.8 | |
| octopus_deploy | ge | 2019.6.0 | |
| octopus_deploy | lt | 2019.6.14 | |
| octopus_deploy | lt | 2019.10.7 |
Related
cvelist
cvelist
CVE-2019-19375
2019-11-28 16:16:36
cve
cve
CVE-2019-19375
2019-11-28 17:15:12
nvd
nvd
CVE-2019-19375
2019-11-28 17:15:12