๐Ÿ” CVE Alert

CVE-2022-2781

UNKNOWN 0.0
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th

In affected versions of Octopus Server it was identified that the same encryption process was used for both encrypting session cookies and variables.

Vendor octopus deploy
Product octopus server
Published Oct 6, 2022
Last Updated Aug 3, 2024
Stay Ahead of the Next One

Get instant alerts for octopus deploy octopus server

Be the first to know when new unknown vulnerabilities affecting octopus deploy octopus server are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

Affected Versions

Octopus Deploy / Octopus Server
3.2.10 < unspecified unspecified < 2022.1.3154 2022.2.6729 < unspecified unspecified < 2022.2.7897 2022.3.348 < unspecified unspecified < 2022.3.10586

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
advisories.octopus.com: https://advisories.octopus.com/post/2022/sa2022-16/