Octopus: >> Octopus Deploy >> 2020.4.6 Security Vulnerabilities
In affected versions of Octopus Deploy it is possible to unmask variable secrets using the variable preview function
CVSS Score
5.3
EPSS Score
0.002
Published
2023-05-02
When Octopus Server is installed using a custom folder location, folder ACLs are not set correctly and could lead to an unprivileged user using DLL side-loading to gain privileged access.
CVSS Score
7.8
EPSS Score
0.001
Published
2021-10-07