Octopus Deploy Information Disclosure Vulnerability (CNVD-2019-29123)

Octopus Deploy is an automation tool for .NET, Java and other application development and deployment from Octopus Deploy Australia. An information disclosure vulnerability exists in Octopus Deploy versions 2018.8.4 through 2019.7.6, which can be exploited by unauthorized attackers to obtain...

CVE-2019-15507

In Octopus Deploy versions 2018.8.4 to 2019.7.6, when a web request proxy is configured, an authenticated user in certain limited special-characters circumstances could trigger a deployment that writes the web request proxy password to the deployment log in cleartext. This is fixed in 2019.7.7. T...