2 matches found
CVE-2022-3614
In affected versions of Octopus Deploy users of certain browsers using AD to sign-in to Octopus Server were able to bypass authentication checks and be redirected to the configured redirect url without any validation...
CVE-2022-3614
CVE-2022-3614 affects Octopus Deploy. The vulnerability enables users authenticating via AD in certain browsers to bypass authentication checks during sign-in and be redirected to the configured redirect URL without validation, effectively leaking session/auth context through an unchecked redirec...