CVE-2021-31820
N/A
N/A
Summary
In Octopus Server after version 2018.8.2 if the Octopus Server Web Request Proxy is configured with authentication, the password is shown in plaintext in the UI.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Octopus Deploy | Octopus Server | 2018.8.2 < unspecified | affected |
| Octopus Deploy | Octopus Server | unspecified < 2020.6.5310 | affected |
| Octopus Deploy | Octopus Server | 2021.1.7149 < unspecified | affected |
| Octopus Deploy | Octopus Server | unspecified < 2021.1.7622 | affected |
Weaknesses
- Proxy Password Stored in Plaintext
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.