Octopus Deploy Security Vulnerabilities and Issues — Octopus Deploy CVE List

Lucene search

OctopusOctopus Deploy

2 matches found

CVE•added 2017/11/13 9:29 a.m.•38 views

CVE-2017-16801

Cross-site scripting (XSS) vulnerability in Octopus Deploy 3.7.0-3.17.13 (fixed in 3.17.14) allows remote authenticated users to inject arbitrary web script or HTML via the Step Template Name parameter.

5.4CVSS5AI score0.0015EPSS

CVE•added 2017/11/14 3:29 a.m.•32 views

CVE-2017-16810

Cross-site scripting (XSS) vulnerability in the All Variables tab in Octopus Deploy 3.4.0-3.13.6 (fixed in 3.13.7) allows remote attackers to inject arbitrary web script or HTML via the Variable Set Name parameter.

5.4CVSS5.3AI score0.0015EPSS