Lucene search
+L

4 matches found

NVD
NVD
added 2019/08/23 6:15 a.m.20 views

CVE-2019-15507

In Octopus Deploy versions 2018.8.4 to 2019.7.6, when a web request proxy is configured, an authenticated user in certain limited special-characters circumstances could trigger a deployment that writes the web request proxy password to the deployment log in cleartext. This is fixed in 2019.7.7. T...

6.5CVSS6.4AI score0.00632EPSS
Exploits0References1
Prion
Prion
added 2019/08/23 6:15 a.m.35 views

Cross site request forgery (csrf)

In Octopus Deploy versions 2018.8.4 to 2019.7.6, when a web request proxy is configured, an authenticated user in certain limited special-characters circumstances could trigger a deployment that writes the web request proxy password to the deployment log in cleartext. This is fixed in 2019.7.7. T...

3.5CVSS6.3AI score0.00632EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/08/23 5:49 a.m.27 views

CVE-2019-15507

In Octopus Deploy versions 2018.8.4 to 2019.7.6, when a web request proxy is configured, an authenticated user in certain limited special-characters circumstances could trigger a deployment that writes the web request proxy password to the deployment log in cleartext. This is fixed in 2019.7.7. T...

6.4AI score0.00632EPSS
Exploits0References1
CVE
CVE
added 2019/08/23 5:49 a.m.64 views

CVE-2019-15507

Octopus Deploy exposes a vulnerability (CVE-2019-15507) affecting versions 2018.8.4 to 2019.7.6 where, if a web request proxy is configured and the user is authenticated, a deployment could cause the web proxy password to be logged in cleartext. The issue is fixed in 2019.7.7, with back-ports to ...

6.5CVSS6.3AI score0.00632EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder