In affected versions of Octopus Server it is possible for target discovery to print certain values marked as sensitive to log files in plaint-text in when verbose logging is enabled.
References
Link | Resource |
---|---|
https://advisories.octopus.com/post/2022/sa2022-24/ | Vendor Advisory |
https://advisories.octopus.com/post/2022/sa2022-24/ | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 07:01
Type | Values Removed | Values Added |
---|---|---|
References | () https://advisories.octopus.com/post/2022/sa2022-24/ - Vendor Advisory |
Information
Published : 2022-11-25 05:15
Updated : 2024-11-21 07:01
NVD link : CVE-2022-2721
Mitre link : CVE-2022-2721
CVE.ORG link : CVE-2022-2721
JSON object : View
Products Affected
octopus
- octopus_server
CWE
CWE-532
Insertion of Sensitive Information into Log File