Known Vulnerabilities
CVE-2024-6972
In affected versions of Octopus Server under certain circumstances it is possible for sensitive variables to be printed in the task log in clear-text.
MEDIUM
CVSS 6.5
Published Jul 25, 2024
CVE-2024-4811
In affected versions of Octopus Server under certain conditions, a user with specific role assignments can access restricted project artifacts.
LOW
CVSS 2.2
Published Jul 25, 2024
CVE-2023-4509
It is possible for an API key to be logged in clear text in the audit log file after an invalid login attempt.
MEDIUM
CVSS 4.3
Published Apr 17, 2024