Octopus Deploy Security Vulnerabilities and Issues — Octopus Deploy CVE List

Lucene search

OctopusOctopus Deploy

3 matches found

CVE•added 2020/10/12 5:15 p.m.•35 views

CVE-2020-25825

In Octopus Deploy 3.1.0 to 2020.4.0, certain scripts can reveal sensitive information to the user in the task logs.

7.5CVSS7.3AI score0.00378EPSS

CVE•added 2020/10/26 6:15 p.m.•35 views

CVE-2020-26161

In Octopus Deploy through 2020.4.2, an attacker could redirect users to an external site via a modified HTTP Host header.

6.1CVSS6.1AI score0.0023EPSS

CVE•added 2020/10/22 5:15 p.m.•29 views

CVE-2020-27155

An issue was discovered in Octopus Deploy through 2020.4.4. If enabled, the websocket endpoint may allow an untrusted tentacle host to present itself as a trusted one.

7.5CVSS7.4AI score0.00383EPSS