Vulnerability Details CVE-2017-16810
Cross-site scripting (XSS) vulnerability in the All Variables tab in Octopus Deploy 3.4.0-3.13.6 (fixed in 3.13.7) allows remote attackers to inject arbitrary web script or HTML via the Variable Set Name parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 36.7%
CVSS Severity
CVSS v3 Score 5.4
CVSS v2 Score 3.5
References
Products affected by CVE-2017-16810
-
cpe:2.3:a:octopus:octopus_deploy:3.10.0
-
cpe:2.3:a:octopus:octopus_deploy:3.10.1
-
cpe:2.3:a:octopus:octopus_deploy:3.11
-
cpe:2.3:a:octopus:octopus_deploy:3.11.0
-
cpe:2.3:a:octopus:octopus_deploy:3.11.1
-
cpe:2.3:a:octopus:octopus_deploy:3.11.10
-
cpe:2.3:a:octopus:octopus_deploy:3.11.11
-
cpe:2.3:a:octopus:octopus_deploy:3.11.12
-
cpe:2.3:a:octopus:octopus_deploy:3.11.13
-
cpe:2.3:a:octopus:octopus_deploy:3.11.14
-
cpe:2.3:a:octopus:octopus_deploy:3.11.15
-
cpe:2.3:a:octopus:octopus_deploy:3.11.16
-
cpe:2.3:a:octopus:octopus_deploy:3.11.17
-
cpe:2.3:a:octopus:octopus_deploy:3.11.18
-
cpe:2.3:a:octopus:octopus_deploy:3.11.2
-
cpe:2.3:a:octopus:octopus_deploy:3.11.3
-
cpe:2.3:a:octopus:octopus_deploy:3.11.4
-
cpe:2.3:a:octopus:octopus_deploy:3.11.5
-
cpe:2.3:a:octopus:octopus_deploy:3.11.6
-
cpe:2.3:a:octopus:octopus_deploy:3.11.7
-
cpe:2.3:a:octopus:octopus_deploy:3.11.9
-
cpe:2.3:a:octopus:octopus_deploy:3.12
-
cpe:2.3:a:octopus:octopus_deploy:3.12.0
-
cpe:2.3:a:octopus:octopus_deploy:3.12.1
-
cpe:2.3:a:octopus:octopus_deploy:3.12.2
-
cpe:2.3:a:octopus:octopus_deploy:3.12.3
-
cpe:2.3:a:octopus:octopus_deploy:3.12.4
-
cpe:2.3:a:octopus:octopus_deploy:3.12.5
-
cpe:2.3:a:octopus:octopus_deploy:3.12.6
-
cpe:2.3:a:octopus:octopus_deploy:3.12.7
-
cpe:2.3:a:octopus:octopus_deploy:3.12.8
-
cpe:2.3:a:octopus:octopus_deploy:3.12.9
-
cpe:2.3:a:octopus:octopus_deploy:3.13
-
cpe:2.3:a:octopus:octopus_deploy:3.13.0
-
cpe:2.3:a:octopus:octopus_deploy:3.13.1
-
cpe:2.3:a:octopus:octopus_deploy:3.13.2
-
cpe:2.3:a:octopus:octopus_deploy:3.13.3
-
cpe:2.3:a:octopus:octopus_deploy:3.13.5
-
cpe:2.3:a:octopus:octopus_deploy:3.13.6
-
cpe:2.3:a:octopus:octopus_deploy:3.4.0
-
cpe:2.3:a:octopus:octopus_deploy:3.4.1
-
cpe:2.3:a:octopus:octopus_deploy:3.4.10
-
cpe:2.3:a:octopus:octopus_deploy:3.4.11
-
cpe:2.3:a:octopus:octopus_deploy:3.4.12
-
cpe:2.3:a:octopus:octopus_deploy:3.4.13
-
cpe:2.3:a:octopus:octopus_deploy:3.4.14
-
cpe:2.3:a:octopus:octopus_deploy:3.4.15
-
cpe:2.3:a:octopus:octopus_deploy:3.4.3
-
cpe:2.3:a:octopus:octopus_deploy:3.4.4
-
cpe:2.3:a:octopus:octopus_deploy:3.4.5
-
cpe:2.3:a:octopus:octopus_deploy:3.4.6
-
cpe:2.3:a:octopus:octopus_deploy:3.4.7
-
cpe:2.3:a:octopus:octopus_deploy:3.4.8
-
cpe:2.3:a:octopus:octopus_deploy:3.4.9
-
cpe:2.3:a:octopus:octopus_deploy:3.5
-
cpe:2.3:a:octopus:octopus_deploy:3.5.1
-
cpe:2.3:a:octopus:octopus_deploy:3.5.2
-
cpe:2.3:a:octopus:octopus_deploy:3.5.4
-
cpe:2.3:a:octopus:octopus_deploy:3.5.5
-
cpe:2.3:a:octopus:octopus_deploy:3.5.6
-
cpe:2.3:a:octopus:octopus_deploy:3.5.7
-
cpe:2.3:a:octopus:octopus_deploy:3.5.8
-
cpe:2.3:a:octopus:octopus_deploy:3.5.9
-
cpe:2.3:a:octopus:octopus_deploy:3.6
-
cpe:2.3:a:octopus:octopus_deploy:3.6.0
-
cpe:2.3:a:octopus:octopus_deploy:3.6.1
-
cpe:2.3:a:octopus:octopus_deploy:3.6.2
-
cpe:2.3:a:octopus:octopus_deploy:3.7
-
cpe:2.3:a:octopus:octopus_deploy:3.7.0
-
cpe:2.3:a:octopus:octopus_deploy:3.7.1
-
cpe:2.3:a:octopus:octopus_deploy:3.7.10
-
cpe:2.3:a:octopus:octopus_deploy:3.7.11
-
cpe:2.3:a:octopus:octopus_deploy:3.7.12
-
cpe:2.3:a:octopus:octopus_deploy:3.7.13
-
cpe:2.3:a:octopus:octopus_deploy:3.7.14
-
cpe:2.3:a:octopus:octopus_deploy:3.7.15
-
cpe:2.3:a:octopus:octopus_deploy:3.7.16
-
cpe:2.3:a:octopus:octopus_deploy:3.7.17
-
cpe:2.3:a:octopus:octopus_deploy:3.7.18
-
cpe:2.3:a:octopus:octopus_deploy:3.7.2
-
cpe:2.3:a:octopus:octopus_deploy:3.7.3
-
cpe:2.3:a:octopus:octopus_deploy:3.7.4
-
cpe:2.3:a:octopus:octopus_deploy:3.7.5
-
cpe:2.3:a:octopus:octopus_deploy:3.7.6
-
cpe:2.3:a:octopus:octopus_deploy:3.7.7
-
cpe:2.3:a:octopus:octopus_deploy:3.7.8
-
cpe:2.3:a:octopus:octopus_deploy:3.7.9
-
cpe:2.3:a:octopus:octopus_deploy:3.8
-
cpe:2.3:a:octopus:octopus_deploy:3.8.0
-
cpe:2.3:a:octopus:octopus_deploy:3.8.1
-
cpe:2.3:a:octopus:octopus_deploy:3.8.2
-
cpe:2.3:a:octopus:octopus_deploy:3.8.3
-
cpe:2.3:a:octopus:octopus_deploy:3.8.4
-
cpe:2.3:a:octopus:octopus_deploy:3.8.5
-
cpe:2.3:a:octopus:octopus_deploy:3.8.6
-
cpe:2.3:a:octopus:octopus_deploy:3.8.7
-
cpe:2.3:a:octopus:octopus_deploy:3.8.8
-
cpe:2.3:a:octopus:octopus_deploy:3.8.9
-
cpe:2.3:a:octopus:octopus_deploy:3.9
-
cpe:2.3:a:octopus:octopus_deploy:3.9.0