CVE-2026-3236
CVE-2026-3236 affects Octopus Server: a vulnerability that allows creating a new API key from an existing access token, resulting in the new key having a longer lifetime than the original. The vulnerability involves API-key minting (noted in the /api/v1/api-keys flow in PT Security’s detailed wri...