Octopus Deploy 信息泄露漏洞

Octopus Deploy is an automation tool for .NET, Java, and other application development and deployment from Octopus Deploy Australia. An information disclosure vulnerability exists in Octopus Deploy that stems from the exposure of sensitive variables...

Octopus Deploy 安全漏洞

Octopus Deploy is an automation tool for .NET, Java and other application development and deployment from Octopus Deploy Australia. A security vulnerability exists in Octopus Deploy. An attacker exploited the vulnerability to perform a regular expression denial of service using Variable Project...

PT-2022-14840 · Unknown · Octopus Deploy

Name of the Vulnerable Software and Affected Versions: Octopus Deploy affected versions not specified Description: The issue allows for a Regex Denial of Service using the Variable Project Template in affected versions of Octopus Deploy. Recommendations: At the moment, there is no information abo...

PT-2022-14706 · Unknown · Octopus Deploy

Name of the Vulnerable Software and Affected Versions: Octopus Deploy affected versions not specified Description: The issue allows for a Regex Denial of Service via the package upload function. Recommendations: At the moment, there is no information about a newer version that contains a fix for...

PT-2022-14180 · Unknown · Octopus Deploy

Name of the Vulnerable Software and Affected Versions: Octopus Deploy affected versions not specified Description: The issue allows sensitive variables to be unmasked by utilizing the variable preview feature in affected versions of the software. Recommendations: At the moment, there is no...

PT-2022-14841 · Unknown · Octopus Deploy

Name of the Vulnerable Software and Affected Versions: Octopus Deploy affected versions not specified Description: The issue allows for a Regex Denial of Service targeting the build information request validation. Recommendations: At the moment, there is no information about a newer version that...

Monero: Reentrancy attack in eth-monero atomic swap

A reentrancy vulnerability was found in the eth-xmr atomic swap smart contract, allowing an attacker to drain almost all of the ethers from the smart contract. The vulnerability was fixed in a later version of the smart contract...

CVE-2022-2095

An improper access control check in GitLab CE/EE affecting all versions starting from 13.7 before 15.0.5, all versions starting from 15.1 before 15.1.4, all versions starting from 15.2 before 15.2.1 allows a malicious authenticated user to view a public project's Deploy Key's public fingerprint a...

CVE-2022-2095

An improper access control check in GitLab CE/EE affecting all versions starting from 13.7 before 15.0.5, all versions starting from 15.1 before 15.1.4, all versions starting from 15.2 before 15.2.1 allows a malicious authenticated user to view a public project's Deploy Key's public fingerprint a...

UBUNTU-CVE-2022-2095

An improper access control check in GitLab CE/EE affecting all versions starting from 13.7 before 15.0.5, all versions starting from 15.1 before 15.1.4, all versions starting from 15.2 before 15.2.1 allows a malicious authenticated user to view a public project's Deploy Key's public fingerprint a...

CVE-2022-2095

An improper access control check in GitLab CE/EE affecting all versions starting from 13.7 before 15.0.5, all versions starting from 15.1 before 15.1.4, all versions starting from 15.2 before 15.2.1 allows a malicious authenticated user to view a public project's Deploy Key's public fingerprint a...

PT-2022-14855 · Gitlab · Gitlab Ce/Ee +1

Name of the Vulnerable Software and Affected Versions: GitLab CE/EE versions 13.7 through 15.0.4 GitLab CE/EE versions 15.1 through 15.1.3 GitLab CE/EE versions 15.2 through 15.2.0 Description: The issue is related to an improper access control check, allowing a malicious authenticated user to vi...

IBM UrbanCode Deploy Information Disclosure Vulnerability

IBM UrbanCode Deploy UCD is a set of application automation deployment tools from the U.S. company IBM. IBM UrbanCode Deploy UCD versions 6.2.0.0 to 6.2.7.16, 7.0.0.0 to 7.0.5.11, 7.1.0.0 to 7.1.2.7, 7.2.0.0 to 7.2.3.0 An information disclosure vulnerability exists, which stems from improper...

CVE-2022-35716

IBM UrbanCode Deploy UCD 6.2.0.0 through 6.2.7.16, 7.0.0.0 through 7.0.5.11, 7.1.0.0 through 7.1.2.7, and 7.2.0.0 through 7.2.3.0 could allow an authenticated user to obtain sensitive information in some instances due to improper security checking. IBM X-Force ID: 231360...

CVE-2022-35716

IBM UrbanCode Deploy UCD 6.2.0.0 through 6.2.7.16, 7.0.0.0 through 7.0.5.11, 7.1.0.0 through 7.1.2.7, and 7.2.0.0 through 7.2.3.0 could allow an authenticated user to obtain sensitive information in some instances due to improper security checking. IBM X-Force ID: 231360...

Input validation

IBM UrbanCode Deploy UCD 6.2.0.0 through 6.2.7.16, 7.0.0.0 through 7.0.5.11, 7.1.0.0 through 7.1.2.7, and 7.2.0.0 through 7.2.3.0 could allow an authenticated user to obtain sensitive information in some instances due to improper security checking. IBM X-Force ID: 231360...

IBM UrbanCode Deploy 安全漏洞

IBM UrbanCode Deploy UCD is a set of application automation deployment tools from the U.S. company IBM. IBM UrbanCode Deploy UCD versions 6.2.0.0 to 6.2.7.16, 7.0.0.0 to 7.0.5.11, 7.1.0.0 to 7.1.2.7, 7.2.0.0 to 7.2.3.0 An information disclosure vulnerability exists, which stems from improper...

CVE-2022-35716

CVE-2022-35716 affects IBM UrbanCode Deploy (UCD) across multiple lines: 6.2.0.0–6.2.7.16, 7.0.0.0–7.0.5.11, 7.1.0.0–7.1.2.7, and 7.2.0.0–7.2.3.0. The issue stems from improper security checks that can allow an authenticated user to obtain sensitive information in some instances (information disc...

CVE-2022-35716

IBM UrbanCode Deploy UCD 6.2.0.0 through 6.2.7.16, 7.0.0.0 through 7.0.5.11, 7.1.0.0 through 7.1.2.7, and 7.2.0.0 through 7.2.3.0 could allow an authenticated user to obtain sensitive information in some instances due to improper security checking. IBM X-Force ID: 231360...

PT-2022-22947 · Ibm · Ibm Urbancode Deploy

Name of the Vulnerable Software and Affected Versions: IBM UrbanCode Deploy versions 6.2.0.0 through 6.2.7.16 IBM UrbanCode Deploy versions 7.0.0.0 through 7.0.5.11 IBM UrbanCode Deploy versions 7.1.0.0 through 7.1.2.7 IBM UrbanCode Deploy versions 7.2.0.0 through 7.2.3.0 Description: The issue...