2 matches found
CVE-2022-2781
In affected versions of Octopus Server it was identified that the same encryption process was used for both encrypting session cookies and variables...
CVE-2022-2781
CVE-2022-2781 involves Octopus Server where the same encryption process is used for both session cookies and variables. The core issue is a shared encryption mechanism between two different data types, exposing potential confidentiality concerns. The CVSS v3.1 metrics indicate Network access, Low...